Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Extended API for More Efficient Key Validation #2060

Open
bhess opened this issue Jan 29, 2025 · 0 comments
Open

Extended API for More Efficient Key Validation #2060

bhess opened this issue Jan 29, 2025 · 0 comments
Labels
enhancement New feature or request

Comments

@bhess
Copy link
Member

bhess commented Jan 29, 2025

Context: FIPS 203 introduces additional key validation during the encapsulation and decapsulation process. In the ML-KEM implementation from mlkem-native, this results in overhead of ~5% in encapsulation and ~30% in decapsulation.

Currently, with the 3-way liboqs KEM API (OQS_KEM_keypair, OQS_KEM_encaps, OQS_KEM_decaps) key validation checks need to be performed during each encapsulation and decapsulation operation, adding overhead for every operation.

An extended API that separates key import from encapsulation and decapsulation would allow the validation checks to occur only once during key import. This would eliminate the repeated overhead when performing multiple encapsulation or decapsulation operations on the same key.

This issue aims to track the investigation and potential development of such an extended API.
@bhess bhess added the enhancement New feature or request label Jan 29, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
liboqs planning
Status: Todo
Milestone
No milestone
Development

No branches or pull requests
1 participant
@bhess