Bug ID: JDK-8314323 Implement JEP 527: TLS 1.3 Hybrid Key Exchange

JDK-8314323 : Implement JEP 527: TLS 1.3 Hybrid Key Exchange

Type: Enhancement
Component: security-libs
Sub-Component: javax.net.ssl

Priority: P2
Status: In Progress
Resolution: Unresolved

Submitted: 2023-08-15
Updated: 2025-11-12

Versions (Unresolved/Resolved/Fixed)

The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.

Other
tbdUnresolved

Related Reports

Blocks :	JDK-8371736 - Implement ML-KEM Named Groups for TLS 1.3
Blocks :	JDK-8301034 - JEP 452: Key Encapsulation Mechanism API
Blocks :	JDK-8298390 - Implement JEP 496: Quantum-Resistant Module-Lattice-Based Key Encapsulation Mechanism
Blocks :	JDK-8358541 - JEP 527: Post-Quantum Hybrid Key Exchange for TLS 1.3
CSR :	JDK-8369848 - Implement JEP 527: TLS 1.3 Hybrid Key Exchange
Duplicate :	JDK-8353682 - Refactor TLS to use KEM for key exchange
Relates :	JDK-8353682 - Refactor TLS to use KEM for key exchange

Description

A proposed specification to support Hybrid Key Exchange for TLS 1.3 (https://datatracker.ietf.org/doc/draft-ietf-tls-hybrid-design) is currently in development.  The current draft of the specification combines traditional x25519, secp256r1 and secp384r1 key shares with kyber512 and kyber768, and KEMs as inputs into the TLS 1.3 key scheduler.  Kyber and KEM support (the latter already having been delivered) will be required features in order to implement this feature.

Comments

A pull request was submitted for review. Branch: master URL: https://git.openjdk.org/jdk/pull/27614 Date: 2025-10-02 22:52:49 +0000

03-10-2025