From 5421978ba2f4f00499b53d1a900dac332275a15c Mon Sep 17 00:00:00 2001
From: Thom Wiggers <thom@thomwiggers.nl>
Date: Wed, 7 Aug 2019 10:19:43 +0200
Subject: [PATCH] Add security warning

---
 SECURITY.md | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 00000000..193a8bd1
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,14 @@
+# A note on the security of the included implementations and schemes
+
+This project contains (reference) implementations of cryptographic libraries.
+We do not make any security claims about the code included in [PQClean][pqclean] or packaged by [rustpq][rustpq].
+In the current state, we distribute reference implementations with minor modifications.
+We did not perform any extensive security analyses.
+This code is suitable for experimental or scientific use.
+We recommend careful expert code review before using any of the included implementations in production environments.
+
+See also the [NIST PQC Forum][forum] for discussion about the cryptographic schemes included in PQClean.
+
+[pqclean]: https://github.com/PQClean/
+[forum]: https://csrc.nist.gov/Projects/Post-Quantum-Cryptography/Email-List
+[rustpq]: https://github.com/rustpq/