65 lines
2.3 KiB
C
65 lines
2.3 KiB
C
|
/********************************************************************************************
|
||
|
* SIDH: an efficient supersingular isogeny cryptography library
|
||
|
*
|
||
|
* Abstract: API header file for SIKE
|
||
|
*********************************************************************************************/
|
||
|
|
||
|
#ifndef SIKE_H_
|
||
|
#define SIKE_H_
|
||
|
|
||
|
#include <stdint.h>
|
||
|
#include <openssl/base.h>
|
||
|
|
||
|
#ifdef __cplusplus
|
||
|
extern "C" {
|
||
|
#endif
|
||
|
|
||
|
/* SIKEp503
|
||
|
*
|
||
|
* SIKE is a isogeny based post-quantum key encapsulation mechanism. Description of the
|
||
|
* algorithm is provided in [SIKE]. This implementation uses 503-bit field size. The code
|
||
|
* is based on "Additional_Implementations" from PQC NIST submission package which can
|
||
|
* be found here:
|
||
|
* https://csrc.nist.gov/CSRC/media/Projects/Post-Quantum-Cryptography/documents/round-1/submissions/SIKE.zip
|
||
|
*
|
||
|
* [SIKE] https://sike.org/files/SIDH-spec.pdf
|
||
|
*/
|
||
|
|
||
|
// SIKEp503_PUB_BYTESZ is the number of bytes in a public key.
|
||
|
#define SIKEp503_PUB_BYTESZ 378
|
||
|
// SIKEp503_PRV_BYTESZ is the number of bytes in a private key.
|
||
|
#define SIKEp503_PRV_BYTESZ 32
|
||
|
// SIKEp503_SS_BYTESZ is the number of bytes in a shared key.
|
||
|
#define SIKEp503_SS_BYTESZ 16
|
||
|
// SIKEp503_MSG_BYTESZ is the number of bytes in a random bit string concatenated
|
||
|
// with the public key (see 1.4 of SIKE).
|
||
|
#define SIKEp503_MSG_BYTESZ 24
|
||
|
// SIKEp503_SS_BYTESZ is the number of bytes in a ciphertext.
|
||
|
#define SIKEp503_CT_BYTESZ (SIKEp503_PUB_BYTESZ + SIKEp503_MSG_BYTESZ)
|
||
|
|
||
|
// SIKE_keypair outputs a public and secret key. Internally it uses BN_rand() as
|
||
|
// an entropy source. In case of success function returns 1, otherwise 0.
|
||
|
OPENSSL_EXPORT int SIKE_keypair(
|
||
|
uint8_t out_priv[SIKEp503_PRV_BYTESZ],
|
||
|
uint8_t out_pub[SIKEp503_PUB_BYTESZ]);
|
||
|
|
||
|
// SIKE_encaps generates and encrypts a random session key, writing those values to
|
||
|
// |out_shared_key| and |out_ciphertext|, respectively.
|
||
|
OPENSSL_EXPORT void SIKE_encaps(
|
||
|
uint8_t out_shared_key[SIKEp503_SS_BYTESZ],
|
||
|
uint8_t out_ciphertext[SIKEp503_CT_BYTESZ],
|
||
|
const uint8_t pub_key[SIKEp503_PUB_BYTESZ]);
|
||
|
|
||
|
// SIKE_decaps outputs a random session key, writing it to |out_shared_key|.
|
||
|
OPENSSL_EXPORT void SIKE_decaps(
|
||
|
uint8_t out_shared_key[SIKEp503_SS_BYTESZ],
|
||
|
const uint8_t ciphertext[SIKEp503_CT_BYTESZ],
|
||
|
const uint8_t pub_key[SIKEp503_PUB_BYTESZ],
|
||
|
const uint8_t priv_key[SIKEp503_PRV_BYTESZ]);
|
||
|
|
||
|
#ifdef __cplusplus
|
||
|
}
|
||
|
#endif
|
||
|
|
||
|
#endif
|