You do not have permission to delete messages in this group
Copy link
Report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to pqc-...@list.nist.gov
IND-CPA only KEMs have advantages when UDP must be used as a transport,
as they are more compact and avoid fragmentation. The main concern
is that they are very easy to misuse.
Can be solved with good APIs that prevent reusing the secret key?
It's possible to have the secret key be a pointer to an opaque struct
that gets invalidated after use.
--
Sincerely,
Demi Marie Obenour (she/her/hers)