2021-03-03 06:50:25 +00:00
# PQ Crypto Catalog
2019-01-11 00:05:16 +00:00
2021-05-26 11:15:16 +01:00
Implementation of quantum-safe signature and KEM schemes submitted to NIST PQC Standardization Process.
2021-05-15 22:21:09 +01:00
The goal is to provide an easy-to-use API in C and Rust to enable experimentation. The code is derived from the submission to the NIST Post-Quantum Standardization, either directly or by leveraging [PQClean ](https://github.com/PQClean/PQClean ) project.
2020-10-11 12:20:15 +01:00
2021-03-25 09:32:59 +00:00
Users shouldn't expect any level of security provided by this code. The library is not meant to be used on live production systems.
2021-03-25 00:46:19 +00:00
2021-06-23 14:14:25 +01:00
## Supported schemes
2021-03-27 00:00:15 +00:00
2022-07-08 23:38:29 +01:00
All schemes selected by NIST duing PQC standardization:
2022-07-05 20:58:38 +01:00
| Name | x86 optimized |
|--------------------------|------------|
| Kyber | x |
| Dilithium | x |
| Falcon | |
| SPHINCS+ SHA256/SHAKE256 | x |
2022-07-08 23:38:29 +01:00
KEM candidates for an additional round 4.
2022-07-05 20:58:38 +01:00
| Name | x86 optimized |
|--------------------------|------------|
| HQC-RMRS | x |
| McEliece | |
2021-03-24 23:34:34 +00:00
## Building
CMake is used to build the library:
2021-03-27 00:11:37 +00:00
```bash
2021-03-24 23:34:34 +00:00
mkdir build
cd build
cmake -DCMAKE_BUILD_TYPE=Release ..
make
```
Build outputs two libraries, a static ``libpqc_s.a`` and dynamic ``libpqc.so``, which can be linked with a project.
2021-03-25 00:46:19 +00:00
## API
Library provides simple API, wrapping PQClean. For example to use KEM, one should call the library in following way:
```c
2021-03-25 00:48:05 +00:00
#include < pqc / pqc . h >
2021-03-25 00:46:19 +00:00
2021-05-04 07:47:35 +01:00
const params_t *p = pqc_kem_alg_by_id(KYBER512);
2021-03-25 00:46:19 +00:00
std::vector< uint8_t > ct(ciphertext_bsz(p));
std::vector< uint8_t > ss1(shared_secret_bsz(p));
std::vector< uint8_t > ss2(shared_secret_bsz(p));
std::vector< uint8_t > sk(private_key_bsz(p));
std::vector< uint8_t > pk(public_key_bsz(p));
2021-03-25 00:48:05 +00:00
pqc_keygen(p, pk.data(), sk.data());
pqc_kem_encapsulate(p, ct.data(), ss1.data(), pk.data());
pqc_kem_decapsulate(p, ss2.data(), ct.data(), sk.data());
2021-03-27 00:00:15 +00:00
2021-03-28 16:58:13 +01:00
p = pqc_sig_alg_by_id(DILITHIUM2);
2021-03-25 07:34:06 +00:00
size_t sigsz = sig.capacity();
pqc_keygen(p, pk.data(), sk.data());
pqc_sig_create(p, sig.data(), & sigsz, msg.data(), msg.size(), sk.data());
pqc_sig_verify(p, sig.data(), sig.size(), msg.data(), msg.size(), pk.data());
2021-03-25 00:46:19 +00:00
```
See test implemetnation in ``test/ut.cpp`` for more details.
## Rust binding
2021-03-27 00:00:15 +00:00
Rust bindgings are provided in the ``src/rustapi/pqc-sys`` and can be regenerated automatically by running ``cargo build`` in that directory.
2021-03-25 00:46:19 +00:00
2021-03-27 00:07:28 +00:00
## Testing against Known Answer Tests
2021-03-25 00:46:19 +00:00
2021-03-27 00:07:28 +00:00
Algorithms are tested against KATs, by the Rust-based runner implemented in the ``test/katrunner`` (only verification/decpaulation). The runner uses ``katwalk`` crate for parsing NIST format. To run it:
2021-03-27 00:00:15 +00:00
2021-03-27 00:11:37 +00:00
```bash
2021-03-27 00:00:15 +00:00
cd test/katrunner
curl http://amongbytes.com/~flowher/permalinks/kat.zip --output kat.zip
unzip kat.zip
cargo run -- --katdir KAT
```
