Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Support for PQC algorithms: ML-KEM, ML-DSA and SLH-DSA ? #367

Open
seriousme opened this issue Aug 21, 2024 · 3 comments
Open

Support for PQC algorithms: ML-KEM, ML-DSA and SLH-DSA ? #367

seriousme opened this issue Aug 21, 2024 · 3 comments

Comments

@seriousme
Copy link

A few days ago NIST standardized 3 PQC, algorithms:
NIST 203: ML-KEM (Module-Lattice-Based Key-Encapsulation Mechanism Standard, based on: Crystals Kyber)
NIST 204: ML-DSA (Module-Lattice-Based Digital Signature Standard, based on: Crystals Dilithium)
NIST 205: SLH-DSA (Stateless Hash-Based Digital Signature Standard, based on: SPHINCS+)

For the announcement see:
https://cloudsecurityalliance.org/blog/2024/08/15/nist-fips-203-204-and-205-finalized-an-important-step-towards-a-quantum-safe-future

It would be nice if these were added to webcrypto as well.

Various implementations (commercial and opensource) already exist as the candidate algorithms have been field tested for quite some time.
E.g.

Chromium already supports Kyber for TLS key exchange since August 2023: https://www.thesslstore.com/blog/google-chrome-adds-support-for-a-hybrid-post-quantum-cryptographic-algorithm/

Kind regards,
Hans

@Neustradamus
Copy link

@seriousme: Thanks!

@seriousme
Copy link
Author

FYI: the IETF LAMPS and COSE workgroups are busy standardizing these as well

I found the following IETF drafts which might help in achieving uniformity in naming and parameters.

Algorithm identifiers:

ML-DSA for JOSE and COSE
https://datatracker.ietf.org/doc/draft-ietf-cose-dilithium/

Cryptographic Message Syntax

Kind regards,
Hans

@paulmillr
Copy link

This would probably land in webcrypto in 5 years.

Meanwhile you can use https://github.com/paulmillr/noble-post-quantum.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

3 participants