Sie befinden sich hier: start » en » Internal Documentation » WvdS Data-Gateway » 4. API Overview » 5. PQ Security » 5.1 PQ Security for Developers

Inhaltsverzeichnis

5.1 PQ Security for Developers

Post-Quantum Cryptography in the Data Gateway.

Architecture

[Client + PQ Certificate]
        | TLS 1.3 (ML-KEM)
[Proxy :443]
        | Named Pipe
[Data Gateway API]
        |
[Database]

Zero Trust Model

  • No implicit trust
  • Every certificate is validated
  • Server decides on trustworthiness
  • Only „issued by us“ certificates accepted

Certificate Hierarchy

Type Purpose Validity
Root CA Trust anchor 10+ years
Intermediate CA Signing 2-5 years
Client Certificate Authentication 1 year
Ephemeral Certificate Session key Minutes

Further Reading

Zuletzt geändert: on 2026/01/29 at 11:31 PM

Seiten-Werkzeuge