Using Dual Algorithm Certificates in TLS: Enabling Rapid Transition to Post-Quantum Cryptography with Backward Compatibility
摘要
The deployment of Post-Quantum Cryptography (PQC) is accelerating, particularly within the Transport Layer Security (TLS) protocol. However, long device lifetimes and limited update capabilities in domains such as Operational Technology (OT) and the Internet of Things (IoT) hinder the adoption of PQC-based authentication, as backward compatibility with legacy devices is essential. In this work, we present a transition mechanism based on dual algorithm certificates, which embed cryptographic artifacts (public key and signature) of both a traditional and a post-quantum algorithm. We introduce a new negotiation mechanism for the TLS handshake that enables secure and flexible use of such certificates for peer authentication, allowing rapid PQC deployment without sacrificing interoperability. We implemented our mechanism in the WolfSSL and OpenSSL libraries and evaluated it on a resource-constrained microcontroller, demonstrating its viability for constrained OT and IoT environments.