Post-Quantum TLS Migration in Hybrid Cloud Environments
Summary
Hide ▲
Show ▼
Organizations are beginning the complex journey to post-quantum cryptography (PQC) to secure hybrid cloud environments. The migration involves inventorying cryptographic assets, upgrading protocols, and validating integrations across thousands of systems. Hybrid cloud architectures, which use Transport Layer Security (TLS) for communication, are particularly vulnerable to quantum-era threats. The migration to quantum-resistant TLS requires support for new post-quantum algorithms on both sides of the communication channel. OpenSSL 3.5 has introduced PQC support, facilitating this transition for organizations using it. However, cloud providers' support for post-quantum TLS varies, potentially requiring organizations to deploy a PQ TLS proxy. Organizations can start hardening TLS now to protect data in transit, reducing exposure to future quantum decryption threats. This can be achieved with minimal disruption, especially where vendor and library support already exists.
Timeline
-
04.09.2025 01:04 1 articles · 28d ago
OpenSSL 3.5 introduces PQC support for TLS key exchanges
OpenSSL 3.5 has introduced post-quantum cryptography (PQC) support into TLS key exchanges, allowing organizations to upgrade to quantum-safe TLS without rewriting applications or changing architectures. This development facilitates the migration to post-quantum cryptography in hybrid cloud environments, where TLS is used for communication between cloud and on-premises systems. Some cloud vendors already provide post-quantum TLS functionality, while others plan to add it, potentially requiring organizations to deploy a PQ TLS proxy.
Show sources
- Hybrid Cloud Provide a Practical Approach to Post-Quantum Migration — www.darkreading.com — 04.09.2025 01:04
Information Snippets
-
The migration to post-quantum cryptography (PQC) involves inventorying cryptographic assets, upgrading protocols, and validating integrations across numerous systems.
First reported: 04.09.2025 01:041 source, 1 articleShow sources
- Hybrid Cloud Provide a Practical Approach to Post-Quantum Migration — www.darkreading.com — 04.09.2025 01:04
-
Hybrid cloud architectures rely on TLS for communication between cloud and on-premises systems, making them vulnerable to quantum-era threats.
First reported: 04.09.2025 01:041 source, 1 articleShow sources
- Hybrid Cloud Provide a Practical Approach to Post-Quantum Migration — www.darkreading.com — 04.09.2025 01:04
-
Quantum-resistant TLS requires support for new post-quantum algorithms on both sides of the communication channel.
First reported: 04.09.2025 01:041 source, 1 articleShow sources
- Hybrid Cloud Provide a Practical Approach to Post-Quantum Migration — www.darkreading.com — 04.09.2025 01:04
-
OpenSSL 3.5 supports PQC in TLS key exchanges, allowing organizations to upgrade to quantum-safe TLS without rewriting applications or changing architectures.
First reported: 04.09.2025 01:041 source, 1 articleShow sources
- Hybrid Cloud Provide a Practical Approach to Post-Quantum Migration — www.darkreading.com — 04.09.2025 01:04
-
Some cloud vendors already provide post-quantum TLS functionality, while others plan to add it, potentially requiring organizations to deploy a PQ TLS proxy.
First reported: 04.09.2025 01:041 source, 1 articleShow sources
- Hybrid Cloud Provide a Practical Approach to Post-Quantum Migration — www.darkreading.com — 04.09.2025 01:04
-
Organizations can start hardening TLS now to protect data in transit, reducing exposure to future quantum decryption threats with minimal disruption.
First reported: 04.09.2025 01:041 source, 1 articleShow sources
- Hybrid Cloud Provide a Practical Approach to Post-Quantum Migration — www.darkreading.com — 04.09.2025 01:04