Leave out ML-KEM-768 ciphertext in combiner

dconnolly / draft-connolly-cfrg-xwing-kem

I-D for a general purpose KEM (key encapsulation mechanism) that includes a hash at the end

Other

8 stars 5 forks source link

Leave out ML-KEM-768 ciphertext in combiner #2

Closed bwesterb closed 1 year ago

dconnolly commented 1 year ago

The removal of the mlkem ciphertext is currently not motivated in this version

bwesterb commented 1 year ago

Explicitly mentioned that in the security considerations TODO. It's not a sealed deal, but to prevent rewriting in a later stage, I think betting that it'll work out is best.