utoni
commented
1 year ago * be sure that we correctly handle HRR TLS message
Always a good idea.
* extract a metadata/risk to report if the TLS flow is using (or not) PQ cryptography
Not sure if we're spamming everybody with Risks from which we currently do not even know when exactly they become ones. It should be somehow configurable for the users.
Should we do something on nDPI to better support PQ cryptography on TLS?
https://blog.cloudflare.com/post-quantum-to-origins/
Ideas: