Tagged: nist
17 entries
- BIKEStandards · BIKE is a code-based key-encapsulation mechanism using QC-MDPC codes with compact keys, not chosen by NIST in round 4 due to decoding-failure-rate concerns.
- Classic McElieceStandards · Classic McEliece is a code-based key-encapsulation mechanism from 1978, the oldest unbroken post-quantum scheme, with very large keys and tiny ciphertexts.
- Digital signature schemeGlossary · A digital signature scheme binds a message to a private key holder so that anyone can verify its origin and integrity with the matching public key.
- Dilithium (CRYSTALS-Dilithium)Glossary · Dilithium, formally CRYSTALS-Dilithium, is the original name of the lattice-based signature scheme NIST renamed ML-DSA and standardized in FIPS 204.
- HQCStandards · HQC is a code-based key-encapsulation mechanism selected by NIST in March 2025 as a backup to ML-KEM, adding non-lattice diversity to the PQC standards.
- Key encapsulation mechanism (KEM)Glossary · A key encapsulation mechanism (KEM) uses a public key to establish a shared secret, the primitive that replaces Diffie-Hellman in post-quantum protocols.
- Kyber (CRYSTALS-Kyber)Glossary · Kyber, formally CRYSTALS-Kyber, is the original name of the lattice-based KEM that NIST renamed ML-KEM and standardized in FIPS 203 in August 2024.
- ML-DSA (FIPS 204)Standards · ML-DSA is the module-lattice digital signature algorithm of FIPS 204, formerly CRYSTALS-Dilithium, and the primary post-quantum signature recommendation.
- ML-KEM (FIPS 203)Standards · ML-KEM is the module-lattice key-encapsulation mechanism of FIPS 203, formerly CRYSTALS-Kyber, and the default post-quantum key establishment method.
- NIST Post-Quantum Cryptography StandardizationStandards · NIST's multi-year process to standardize post-quantum cryptography, from the 2016 call for proposals to FIPS 203, 204, and 205 and the 2025 HQC selection.
- NIST security levelsGlossary · NIST security levels are five strength categories for post-quantum algorithms, each anchored to the cost of attacking AES or SHA-2 at a given size.
- PKI migration to post-quantumMigration · PKI migration to post-quantum cryptography replaces RSA and ECDSA across roots, chains, HSMs, and CT logs, guided by NIST IR 8547 and its 2030 to 2035 timeline.
- Post-quantum algorithm comparisonStandards · Reference comparison of ML-KEM, ML-DSA, SLH-DSA, FN-DSA, and HQC against RSA and elliptic-curve cryptography on sizes, speed, and security basis.
- Post-quantum cryptographyFoundations · Post-quantum cryptography is the field of cryptographic algorithms designed to resist attacks by both classical computers and future quantum computers.
- Rainbow (signature scheme)Standards · Rainbow is a multivariate post-quantum signature scheme, a NIST finalist that was broken by a practical key-recovery attack in 2022.
- SLH-DSA (FIPS 205)Standards · SLH-DSA is the stateless hash-based signature scheme of FIPS 205, formerly SPHINCS+, valued for resting only on well-studied hash function security.
- SPHINCS+ (SLH-DSA)Glossary · SPHINCS+ is the original name of the stateless hash-based signature scheme that NIST renamed SLH-DSA and standardized in FIPS 205 in August 2024.