Post Quantum cryptography in Golang

[D P]

Hi Golang devs,

When would NIST standardized post quantum cryptography schemes (Falcon, Dilithium, Kyber) be implemented into Golang natively? Is there a timeline for this. 

https://csrc.nist.gov/Projects/post-quantum-cryptography/selected-algorithms-2022

[Filippo Valsorda]

Hello,

We're experimenting with Kyber, as KEMs are the most urgent concern to protect against collect-now-decrypt-later attacks. It's unlikely we'll expose an API in the standard library before NIST produces a final specification, but we might enable draft hybrid key exchanges in crypto/tls in the meantime, maybe behind a GOEXPERIMENT flag.

I have no precise timeline for this.

[D P]

Thanks for the info Filippo.

The NIST draft specifications have been made available yesterday.

1. FIPS 203, Module-Lattice-Based Key-Encapsulation Mechanism Standard  (Kyber)
2. FIPS 204, Module-Lattice-Based Digital Signature Standard  (Dilithium)
3. FIPS 205, Stateless Hash-Based Digital Signature Standard  (SPHINCS+)

[Rob Pike]

Surely the phrase should be post-non-quantum?

-rob

--
You received this message because you are subscribed to the Google Groups "golang-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to golang-dev+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/golang-dev/476ca8f8-315f-43da-99b4-a6b4a96900acn%40googlegroups.com.

[D P]

Dear Filippo,

>>>but we might enable draft hybrid key exchanges in crypto/tls in the meantime, maybe behind a GOEXPERIMENT flag.

Could you please share some timeline when this experimental hybrid mode will be available? We have an use-case for hybrid mode, but prefer something that comes with golang (even if under experimental flag), instead of building ourselves.

On Friday, August 18, 2023 at 10:59:15 PM UTC-7 Filippo Valsorda wrote: