search

open-quantum-safe / oqs-provider

OpenSSL 3 provider containing post-quantum algorithms
https://openquantumsafe.org
MIT License
233 stars 89 forks source link

Document -DCLOUDFLARE #141

Closed wbl closed 1 year ago

wbl commented 1 year ago

Currently the OpenQuantumSafe provider has a compilation option that supposedly creates the x25519+Kyber768 combination with some codepoint.

This is not documented anywhere: either the effects or how to pass it to the build scripts.

baentsch commented 1 year ago

As we consider this combination illogical (and weak, in the sense that algorithms of different strengths are mixed) and thus goes against oqsproviders internal logic of building hybrids we only created this for interop testing (where it works) but not for "everyday" use. We'll surely change this (and document it for "everyone's use") if there'd be a move to standardize (say an RFC draft) for this combination.

Until then, please see https://github.com/open-quantum-safe/oqs-provider/pull/78 containing all information how to build and use.

dstebila commented 1 year ago

Is this obsoleted by #177?

baentsch commented 1 year ago

Is this obsoleted by #177?

Yes, #177 enabled the weak cloudflare hybrids (bit_security=128) by default.