Skip to content

Implement hybrid EC+MLKEM groups from draft-ietf-tls-ecdhe-mlkem#143

Open
nmathewson wants to merge 1 commit intoRustCrypto:masterfrom
nmathewson:pq_hybrid_kex
Open

Implement hybrid EC+MLKEM groups from draft-ietf-tls-ecdhe-mlkem#143
nmathewson wants to merge 1 commit intoRustCrypto:masterfrom
nmathewson:pq_hybrid_kex

Conversation

@nmathewson
Copy link

@nmathewson nmathewson commented Feb 24, 2026

This draft is already implemented in OpenSSL, NSS, and AWS_LC, making it reasonable to support here.

I've gone with the simplest reasonable implementation I could here, using the RustCrypto ml-kem crate, and the existing EC key exchange groups. See comments for implementation details.

Note: For now, I have made these key exchange methods always present, and always at the end of ALL_KX_GROUPS. I would not mind making them feature-gated or whatever you think best; Just let me know.

@nmathewson
Implement hybrid EC+MLKEM groups from draft-ietf-tls-ecdhe-mlkem
52d923a 
This draft is already implemented in OpenSSL, NSS, and AWS_LC,
making it reasonable to support here.

I've gone with the simplest reasonable implementation I could here,
using the RustCrypto `ml-kem` crate, and the existing EC key
exchange groups.  See comments for implementation details.
@nmathewson
Copy link
Author

nmathewson commented Feb 24, 2026

(Apologies: I just force-pushed a new version to fix tab/space issues.)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nmathewson