1eb8fbe8d3
* Fix bug in the output of the ct_verify function
A bug in the CCA transformation was reported on the pqc-forum on 2020-12-10
https://groups.google.com/a/list.nist.gov/g/pqc-forum/c/kSUKzDNc5ME
It was fixed today in 669522db63
.
This commit ports that fix to PQClean
* add note to SECURITY.md
* update upstream commit in META.yml
29 lines
933 B
YAML
29 lines
933 B
YAML
name: FrodoKEM-1344-AES
|
|
type: kem
|
|
claimed-nist-level: 5
|
|
claimed-security: IND-CCA2
|
|
length-public-key: 21520
|
|
length-secret-key: 43088
|
|
length-ciphertext: 21632
|
|
length-shared-secret: 32
|
|
nistkat-sha256: 2f4f1c352c1b343cce386c54234ca39fe29b48e45c66300f7311f5d3060d82b3
|
|
principal-submitters:
|
|
- Michael Naehrig, Microsoft Research
|
|
auxiliary-submitters:
|
|
- Erdem Alkim
|
|
- Joppe W. Bos, NXP Semiconductors
|
|
- Léo Ducas, CWI
|
|
- Patrick Longa, Microsoft Research
|
|
- Ilya Mironov, Google
|
|
- Valeria Nikolaenko
|
|
- Chris Peikert, University of Michigan
|
|
- Ananth Raghunathan, Google
|
|
- Douglas Stebila, University of Waterloo
|
|
- Karen Easterbrook, Microsoft Research
|
|
- Brian LaMacchia, Microsoft Research
|
|
implementations:
|
|
- name: clean
|
|
version: https://github.com/microsoft/PQCrypto-LWEKE/commit/669522db63850fa64d1a24a47e138e80a59349db
|
|
- name: opt
|
|
version: https://github.com/microsoft/PQCrypto-LWEKE/commit/669522db63850fa64d1a24a47e138e80a59349db
|