aries-askar icon indicating copy to clipboard operation
aries-askar copied to clipboard
verified publisher icon hyperledger

Support for ML-DSA FIPS 204

Open timbl-ont opened this issue 1 year ago • 3 comments

Just curious to know if anyone is looking at implementing post quantum crypto in Askar - especially FIPS 204?

https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.204.pdf

timbl-ont avatar Jan 22 '25 19:01 timbl-ont

There is an early implementation in RustCrypto that could be used, at least for testing: https://crates.io/crates/ml-dsa

andrewwhitehead avatar Jan 22 '25 19:01 andrewwhitehead

@berendsliedrecht is going to look into post quantum crypto in the coming months. Not sure if we'll integrate it directly into Askar, but I guess that makes sense (maybe behind a feature flag)?

TimoGlastra avatar Jan 23 '25 04:01 TimoGlastra

The ml-dsa crate is part of a big update in the RustCrypto ecosystem involving a switch to the hybrid-array crate, a newer rand dependency, newer crypto-bigint, and newer Rust compiler versions. It's currently pre-release but I imagine it will get a proper release version once that update is completed. Updating all the other RustCrypto dependencies might take a fair amount of work and I believe it would need to be done before adding this support. Those dependencies should all have prerelease versions so it could be tested out in a draft PR or branch first.

andrewwhitehead avatar Mar 21 '25 18:03 andrewwhitehead