Groups
Groups
Sign in
Groups
Groups
pqc-forum
Conversations
About
Send feedback
Help
pqc-forum
Contact owners and managers
1–30 of 1218
Mark all as read
Report group
0 selected
dustin...@nist.gov
, …
Francisco Rodriguez- Henriquez
46
Jun 2
Announcement of the 3rd Round Onramp Candidates
Hi Krijn, Don't forget to also check PQ-SORT: https://pqsort.tii.ae/ PQ-SORT will be continuously
unread,
Announcement of the 3rd Round Onramp Candidates
Hi Krijn, Don't forget to also check PQ-SORT: https://pqsort.tii.ae/ PQ-SORT will be continuously
Jun 2
conduition
,
dustin...@nist.gov
3
Jun 2
SLH-DSA non-standard chain lengths
Thanks Dustin, SP800-230 is not an option for my use-case, as I noted in my original email.
unread,
SLH-DSA non-standard chain lengths
Thanks Dustin, SP800-230 is not an option for my use-case, as I noted in my original email.
Jun 2
Markku-Juhani O. Saarinen
Jun 2
ENISA opens a call to participate in the public review of “Agreed Cryptographic Mechanisms” until end of July
FYI -- News announcement 2 June 2026 European Union Agency for Cybersecurity ECCG “Agreed
unread,
ENISA opens a call to participate in the public review of “Agreed Cryptographic Mechanisms” until end of July
FYI -- News announcement 2 June 2026 European Union Agency for Cybersecurity ECCG “Agreed
Jun 2
Hiroki Furue
May 31
Complexity estimates for underdetermined MQ systems
Dear all, I would like to share a draft manuscript on algorithms for solving underdetermined MQ
unread,
Complexity estimates for underdetermined MQ systems
Dear all, I would like to share a draft manuscript on algorithms for solving underdetermined MQ
May 31
Jack
, …
Q C
4
May 30
Apple's corecrypto open sourced
Yeah I noticed that, its also only MLKEM 768/1024, might be deliberate choice of not using lower
unread,
Apple's corecrypto open sourced
Yeah I noticed that, its also only MLKEM 768/1024, might be deliberate choice of not using lower
May 30
Felix Sagaz
May 29
Proposal: Fractal‑Logical Spectral Invariants as Post‑Quantum Cryptographic Primitives
Dear PQC Forum members, I would like to share a new operator‑theoretic approach to post‑quantum
unread,
Proposal: Fractal‑Logical Spectral Invariants as Post‑Quantum Cryptographic Primitives
Dear PQC Forum members, I would like to share a new operator‑theoretic approach to post‑quantum
May 29
Moody, Dustin (Fed)
, …
David Cooper
42
May 20
Update on SP 800-208
As noted in Section 4 and Appendix A of SP 800-208, the identifiers may be found at https://www.iana.
unread,
Update on SP 800-208
As noted in Section 4 and Appendix A of SP 800-208, the identifiers may be found at https://www.iana.
May 20
dustin...@nist.gov
May 18
Guidelines for tweaks for the Onramp Round 3 Candidates
Deadline: August 14, 2026 Candidate teams must meet the same submission requirements and minimum
unread,
Guidelines for tweaks for the Onramp Round 3 Candidates
Deadline: August 14, 2026 Candidate teams must meet the same submission requirements and minimum
May 18
Watson Ladd
,
Demi Marie Obenour
2
May 15
Use cases for small signatures and keys
On 5/15/26 18:33, Watson Ladd wrote: > Dear NIST, > > It's great to see the third round
unread,
Use cases for small signatures and keys
On 5/15/26 18:33, Watson Ladd wrote: > Dear NIST, > > It's great to see the third round
May 15
Charles Emuze
, …
Ayoub Zaki
4
May 7
Why does the current oqs-provider repo expose no PQC algorithms (Kyber, Dilithium, ML‑DSA) even though the provider loads successfully?
I did some work around that while ago check this docker container: https://github.com/embetrix/oqs-
unread,
Why does the current oqs-provider repo expose no PQC algorithms (Kyber, Dilithium, ML‑DSA) even though the provider loads successfully?
I did some work around that while ago check this docker container: https://github.com/embetrix/oqs-
May 7
Scott Fluhrer (sfluhrer)
May 6
An implementation optimization for SP800-230 and different parameter sets designed around that optimzation
This is about the NIST SP 800-230 initial public draft, and I'd like to point out two things: The
unread,
An implementation optimization for SP800-230 and different parameter sets designed around that optimzation
This is about the NIST SP 800-230 initial public draft, and I'd like to point out two things: The
May 6
Srini Katta
,
Brent Kimberley
3
May 5
Subject: [Contribution] Mitigating EPER Threat Vectors Across Classical and PQC Frameworks
Hi Brent, Those are exactly the right points to drill into. When we look at RFC 9180 (HPKE), it's
unread,
Subject: [Contribution] Mitigating EPER Threat Vectors Across Classical and PQC Frameworks
Hi Brent, Those are exactly the right points to drill into. When we look at RFC 9180 (HPKE), it's
May 5
Martin Feussner
, …
Cong Ling
3
May 5
Revised Digital Signature Scheme - DEFIv2
Dear All, Earlier, we presented an attack on DEFIv2 in our paper Title: Cryptanalysis of Definite and
unread,
Revised Digital Signature Scheme - DEFIv2
Dear All, Earlier, we presented an attack on DEFIv2 in our paper Title: Cryptanalysis of Definite and
May 5
Loïc Bidoux
2
May 5
Mirath v2.1 Release
Hi all, We have released a note regarding the performances of Mirath on our website. In this note, we
unread,
Mirath v2.1 Release
Hi all, We have released a note regarding the performances of Mirath on our website. In this note, we
May 5
Loïc Bidoux
2
May 5
RYDE v2.1 Release
Hi all, We have released a note regarding the performances of RYDE on our website. In this note, we
unread,
RYDE v2.1 Release
Hi all, We have released a note regarding the performances of RYDE on our website. In this note, we
May 5
dustin...@nist.gov
,
John Mattsson
2
May 4
Call for comments: ipd SP 800-230: Additional SLH-DSA Parameter Sets for Limited Signature Use Cases
Thanks Dustin, We welcome NIST's plan to standardize additional SLH-DSA parameter sets. A limit
unread,
Call for comments: ipd SP 800-230: Additional SLH-DSA Parameter Sets for Limited Signature Use Cases
Thanks Dustin, We welcome NIST's plan to standardize additional SLH-DSA parameter sets. A limit
May 4
Martin Feussner
, …
Phong Nguyen
3
Apr 28
New Digital Signature Scheme with 24-Byte Signatures: X-1
Dear all, We've read with great interest this new multivariate signature. Unfortunately, we have
unread,
New Digital Signature Scheme with 24-Byte Signatures: X-1
Dear all, We've read with great interest this new multivariate signature. Unfortunately, we have
Apr 28
7824...@qq.com
Apr 27
Test the size of the attachment -10M
Test the size of the attachment -10M 7824...@qq.com
unread,
Test the size of the attachment -10M
Test the size of the attachment -10M 7824...@qq.com
Apr 27
Christoph Striecks
Apr 27
For public consultation: ETSI DTS/CYBER-QSC-0030 TS 104 146 v0.0.4
Dear all, The European Telecommunications Standards Institute's Specialist Task Force (STF) 684
unread,
For public consultation: ETSI DTS/CYBER-QSC-0030 TS 104 146 v0.0.4
Dear all, The European Telecommunications Standards Institute's Specialist Task Force (STF) 684
Apr 27
C W
,
Alex Railean
2
Apr 20
RFC - Claude Skill for Cryptographic Discovery — Seeking Feedback from the Community
Hi, Running this analysis with Anthropic's infrastructure and tools in the loop might not be
unread,
RFC - Claude Skill for Cryptographic Discovery — Seeking Feedback from the Community
Hi, Running this analysis with Anthropic's infrastructure and tools in the loop might not be
Apr 20
Hamilton Silberg
Apr 17
Call for comments: ipd SP 800-133r3 Recommendation for Cryptographic Key Generation
Hello all, The initial public draft (ipd) of NIST SP 800-133r3 (Revision 3), Recommendation for
unread,
Call for comments: ipd SP 800-133r3 Recommendation for Cryptographic Key Generation
Hello all, The initial public draft (ipd) of NIST SP 800-133r3 (Revision 3), Recommendation for
Apr 17
Scott Fluhrer (sfluhrer)
, …
wa...@beullens.com
7
Apr 15
Why does the UOV submission to NIST need a 16 byte salt in each signature?
I said "*If you don't care about side-channel or fault injection attacks*, then you can omit
unread,
Why does the UOV submission to NIST need a 16 byte salt in each signature?
I said "*If you don't care about side-channel or fault injection attacks*, then you can omit
Apr 15
marc.stoettinger
2
Apr 15
MAgiCS 2026 – Workshop on Migration and Agility in Cryptographic Systems (co-located with EUROCRYPT 2026)
Dear all, we would like to invite you to MAgiCS26, the Workshop on Migration and Agility in
unread,
MAgiCS 2026 – Workshop on Migration and Agility in Cryptographic Systems (co-located with EUROCRYPT 2026)
Dear all, we would like to invite you to MAgiCS26, the Workshop on Migration and Agility in
Apr 15
Michele Battagliola
5
Apr 15
CBCrypto 2026
Dear all, t is our pleasure to invite you to the 7th international workshop in code-based
unread,
CBCrypto 2026
Dear all, t is our pleasure to invite you to the 7th international workshop in code-based
Apr 15
Thom Wiggers
, …
Deirdre Connolly
4
Apr 15
Re: [Pqc] IND-CPA *only* KEMs
Instead of tweaking the parameters for {M,R}LWE-schemes like Kyber and SABER or for NTRU-based
unread,
Re: [Pqc] IND-CPA *only* KEMs
Instead of tweaking the parameters for {M,R}LWE-schemes like Kyber and SABER or for NTRU-based
Apr 15
simona s
Apr 15
Invitation to AM-PQC Workshop on algebraic methods in post-quantum cryptography
Dear all, It is our pleasure to invite you to the Workshop on algebraic methods in post-quantum
unread,
Invitation to AM-PQC Workshop on algebraic methods in post-quantum cryptography
Dear all, It is our pleasure to invite you to the Workshop on algebraic methods in post-quantum
Apr 15
Juan Todolí
Apr 14
ML-DSA-65 in Production: Looking for Others Deploying FIPS 204
Introducing ourselves to the community. We're running ML-DSA-65 (FIPS 204) natively in a
unread,
ML-DSA-65 in Production: Looking for Others Deploying FIPS 204
Introducing ourselves to the community. We're running ML-DSA-65 (FIPS 204) natively in a
Apr 14
John Mattsson
, …
dustin...@nist.gov
31
Apr 13
FIPS 206 Status Update
Paul, We don't have a concrete release date for the draft of FIPS 206 yet, though we're
unread,
FIPS 206 Status Update
Paul, We don't have a concrete release date for the draft of FIPS 206 yet, though we're
Apr 13
Aiden Tejada
Apr 9
Seeking feedback on a semantic fragmentation approach as a post-decryption reconstruction barrier for HNDL
Hi everyone, I'm a first-year CS and Applied Mathematics student at Trinity College, and I'm
unread,
Seeking feedback on a semantic fragmentation approach as a post-decryption reconstruction barrier for HNDL
Hi everyone, I'm a first-year CS and Applied Mathematics student at Trinity College, and I'm
Apr 9
Longfei Qiu
Apr 7
In CROSS signature, why does chall1 need to be non-zero?
Hi, On page 10 of CROSS signature specification, it is required that "The verifier chooses a
unread,
In CROSS signature, why does chall1 need to be non-zero?
Hi, On page 10 of CROSS signature specification, it is required that "The verifier chooses a
Apr 7
