Pre-shared key (PPK) for Post-Quantum resistance

David Johnston davewj100 at
Mon Apr 26 20:44:11 BST 2021

Good Day OpenConnect/ocserv mailing list,

I have a client who has a requirement for an SSL VPN with an
additional pre-shared key for post-quantum resistance. (Like PPKs in
IPSec, or the additional symmetric key in Wireguard) We would rather
not use OpenVPN.

Does anybody have any ideas of how we could accomplish this in
OpenConnect? Is there some gnuTLS priority string we can use? If I was
to mod the source code, where would I start?

Thanks so much,

Dave J

More information about the openconnect-devel mailing list