Question on post-quantum algo support

Tongsuo-Project / Tongsuo

铜锁/Tongsuo is a Modern Cryptographic Primitives and Protocols Library

https://www.tongsuo.net

Apache License 2.0

1.12k stars 181 forks source link

Question on post-quantum algo support #345

Open jyao1 opened 1 year ago

jyao1 commented 1 year ago

In readme, "后量子密码学*：LAC、NTRU、Saber、Dilithium等".

With CNSA 2.0, I think people has more interest on LMS/XMSS for image signing, and Kyber/Dilithium for TLS. Would you please share, if you have plan to support Kyber, LMS, and XMSS?

Also, hybrid mode is recommended in the transition phase. Would you please share, if hybrid mode will be considered?

WangYaoABC commented 1 year ago

I think the current better practice is to use the provider functions. I've experimented the Kyber and Dilithium with Tongsuo by using the provider extension. It works well. We'll introduce the algorithms LMS and XMSS into this provider in the near future. Hybrid mode is also planned, and if it goes well, we will consider open source.

jyao1 commented 1 year ago

Cool. Thanks! For provider extension, is there any example I can refer to?

WangYaoABC commented 1 year ago

https://wiki.openssl.org/index.php/OpenSSL_3.0#Providers

fffmath commented 8 months ago

Hello, it seems that there is no tutorial on using post quantum with Tongsuo. Could you tell me where to find it?