AI || Cyber || Quantum — Engineering Trustworthy Operational Systems
CSA Research Brief · Post-Quantum Cryptography and Internet-Equivalent Validation

TLS 1.3 with ML-KEM Key Exchange over an Emulated IPv4/IPv6 Internet

Operational Evaluation of Post-Quantum Cryptography

Author: Deepinder SidhuCollection: Quantum ResearchStatus: Technical PaperCSA Research Series

Abstract

Public research abstract for rapid publication and indexing.

This paper presents an operational evaluation of TLS 1.3 with hybrid ML-KEM (X25519MLKEM768) key exchange executed over a high-fidelity emulated dual-stack IPv4/IPv6 Internet. Using unmodified production TLS implementations, the evaluation exercises client and server systems across deployment configurations, routing path variations, induced routing failures, 1000 consecutive handshake negotiations, and remote cross-endpoint interoperability scenarios. Full packet capture confirms correct encapsulation, negotiation stability, and recovery behavior under dynamic routing conditions.

Post-quantum cryptography must be validated as an operational Internet system, not only as an algorithm.

Why This Matters

This research addresses an operational engineering challenge central to CSA's research program.

PQC Deployment Is Operational

Standardized cryptography still must work across real routing dynamics, failures, retransmissions, and heterogeneous endpoint conditions.

Internet-Equivalent Validation Matters

The emulated IPv4/IPv6 Internet provides repeatable routed topologies, full observability, and controlled failure scenarios.

Evidence Comes from Packets

Packet capture verifies encapsulation, negotiation stability, retransmission behavior, and recovery under dynamic routing.

Key Contributions

The paper contributes practical concepts and operational evaluation evidence.

  • Evaluates TLS 1.3 with hybrid X25519MLKEM768 key exchange over a routed dual-stack IPv4/IPv6 Internet environment.
  • Uses unmodified production TLS implementations rather than instrumented or simplified test code.
  • Exercises routing path variation, induced routing failures, and reconvergence behavior during handshake negotiation.
  • Performs 1000 consecutive TLS 1.3 session negotiations to evaluate repeated handshake stability.
  • Demonstrates remote interoperability testing architecture using live–virtual Internet emulation attachments.
  • Positions Internet emulation as an operational validation layer for post-quantum transition planning.

Research Impact

This work strengthens CSA's public research foundation and supports the Research Portal campaign.

For PQC Transition Planning

Shows how post-quantum mechanisms can be evaluated under realistic Internet routing conditions before large-scale deployment.

For Vendors

Provides a framework for remote endpoint interoperability validation without modifying TLS stacks or cryptographic libraries.

For Government and Enterprise

Supports evidence-based migration planning for quantum-resistant secure communications.

For CSA Research

Connects quantum-safe security, Internet Emulator capability, and operational validation into one research asset.

Applications

The work applies to operational validation, cybersecurity engineering, mission systems, and emerging technology deployment.

PQC Interoperability Testing

Validation of independent TLS stacks and cryptographic providers under controlled routed conditions.

Enterprise TLS Migration

Operational assessment of hybrid ML-KEM deployment readiness.

Critical Infrastructure Security

Evidence-based evaluation of quantum-safe communication mechanisms across realistic networks.

Post-Quantum CryptographyML-KEMTLS 1.3X25519MLKEM768Internet EmulatorIPv4IPv6PQC ValidationQuantum-Safe Security

Citation

Update with arXiv ID when assigned.

@misc{sidhu2026tls13mlkem, author = {Deepinder Sidhu}, title = {TLS 1.3 with ML-KEM Key Exchange over an Emulated IPv4/IPv6 Internet: Operational Evaluation of Post-Quantum Cryptography}, year = {2026}, note = {Technical paper}, }

Explore CyberSpace Analytics

CyberSpace Analytics develops advanced technologies in Operational AI Engineering, Agentic AI Assurance, Internet-Equivalent Validation, Cybersecurity, and Quantum Information Science.