Documentation ¶
Overview ¶
Package kem provides a unified interface for KEM schemes.
A register of schemes is available in the package
github.com/cloudflare/circl/kem/schemes
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ( // ErrTypeMismatch is the error used if types of, for instance, private // and public keys don't match ErrTypeMismatch = errors.New("types mismatch") // ErrSeedSize is the error used if the provided seed is of the wrong // size. ErrSeedSize = errors.New("wrong seed size") // ErrPubKeySize is the error used if the provided public key is of // the wrong size. ErrPubKeySize = errors.New("wrong size for public key") // ErrCiphertextSize is the error used if the provided ciphertext // is of the wrong size. ErrCiphertextSize = errors.New("wrong size for ciphertext") // ErrPrivKeySize is the error used if the provided private key is of // the wrong size. ErrPrivKeySize = errors.New("wrong size for private key") // ErrPubKey is the error used if the provided public key is invalid. ErrPubKey = errors.New("invalid public key") // ErrCipherText is the error used if the provided ciphertext is invalid. ErrCipherText = errors.New("invalid ciphertext") )
Functions ¶
This section is empty.
Types ¶
type PrivateKey ¶
type PrivateKey interface { // Returns the scheme for this private key Scheme() Scheme encoding.BinaryMarshaler Equal(PrivateKey) bool Public() PublicKey }
A KEM private key
type PublicKey ¶
type PublicKey interface { // Returns the scheme for this public key Scheme() Scheme encoding.BinaryMarshaler Equal(PublicKey) bool }
A KEM public key
type Scheme ¶
type Scheme interface { // Name of the scheme Name() string // GenerateKeyPair creates a new key pair. GenerateKeyPair() (PublicKey, PrivateKey, error) // DeriveKeyPair deterministically derives a pair of keys from a seed. // Panics if the length of seed is not equal to the value returned by // SeedSize. DeriveKeyPair(seed []byte) (PublicKey, PrivateKey) // Encapsulate generates a shared key ss for the public key and // encapsulates it into a ciphertext ct. // seed may be nil, in which case crypto/rand.Reader is used to generate one. // // Panics if key is nil or wrong type. Encapsulate(pk PublicKey, seed []byte) (ct, ss []byte, err error) // EncapsulateTo generates a shared key ss for the public // key deterministically from the given seed and encapsulates it into // a ciphertext ct. If unsure, you're better off using Encapsulate(). // // Panics if ct, ss or seed are not of length CiphertextSize, SharedKeySize // and EncapsulationSeedSize respectively. // // Panics if key is nil or wrong type. EncapsulateTo(pk PublicKey, ct, ss, seed []byte) // Returns the shared key encapsulated in ciphertext ct for the // private key sk. // // Panics if key is nil or wrong type. Decapsulate(sk PrivateKey, ct []byte) (ss []byte, err error) // DecapsulateTo computes the shared key which is encapsulated in ct // for the private key. // // Panics if ct or ss are not of length CiphertextSize and SharedKeySize // respectively. // // Panics if key is nil or wrong type. DecapsulateTo(sk PrivateKey, ss, ct []byte) // Unmarshals a PublicKey from the provided buffer. UnmarshalBinaryPublicKey([]byte) (PublicKey, error) // Unmarshals a PrivateKey from the provided buffer. UnmarshalBinaryPrivateKey([]byte) (PrivateKey, error) // Size of encapsulated keys. CiphertextSize() int SharedKeySize() int // Size of packed private keys. PrivateKeySize() int // Size of packed public keys. PublicKeySize() int // Size of seed used in DeriveKeyPair. SeedSize() int // Size of seed used in EncapsulateDeterministically. EncapsulationSeedSize() int }
A Scheme represents a specific instance of a KEM.
Directories ¶
Path | Synopsis |
---|---|
Package frodo provides the key encapsulation mechanism FrodoKEM.
|
Package frodo provides the key encapsulation mechanism FrodoKEM. |
frodo640shake
Package frodo640shake implements the variant FrodoKEM-640 with SHAKE.
|
Package frodo640shake implements the variant FrodoKEM-640 with SHAKE. |
Package hybrid defines several hybrid classical/quantum KEMs.
|
Package hybrid defines several hybrid classical/quantum KEMs. |
Package kyber implements the CRYSTALS-Kyber.CCAKEM IND-CCA2 secure key encapsulation mechanism (KEM) as submitted to round 3 of the NIST PQC competition and described in
|
Package kyber implements the CRYSTALS-Kyber.CCAKEM IND-CCA2 secure key encapsulation mechanism (KEM) as submitted to round 3 of the NIST PQC competition and described in |
kyber1024
Package kyber1024 implements the IND-CCA2 secure key encapsulation mechanism Kyber1024.CCAKEM as submitted to round 3 of the NIST PQC competition and described in
|
Package kyber1024 implements the IND-CCA2 secure key encapsulation mechanism Kyber1024.CCAKEM as submitted to round 3 of the NIST PQC competition and described in |
kyber512
Package kyber512 implements the IND-CCA2 secure key encapsulation mechanism Kyber512.CCAKEM as submitted to round 3 of the NIST PQC competition and described in
|
Package kyber512 implements the IND-CCA2 secure key encapsulation mechanism Kyber512.CCAKEM as submitted to round 3 of the NIST PQC competition and described in |
kyber768
Package kyber768 implements the IND-CCA2 secure key encapsulation mechanism Kyber768.CCAKEM as submitted to round 3 of the NIST PQC competition and described in
|
Package kyber768 implements the IND-CCA2 secure key encapsulation mechanism Kyber768.CCAKEM as submitted to round 3 of the NIST PQC competition and described in |
Package schemes contains a register of KEM schemes.
|
Package schemes contains a register of KEM schemes. |
Click to show internal directories.
Click to hide internal directories.