New Hope Post-Quantum Key Exchange Algorithm » History » Version 2
Version 1 (Andreas Steffen, 11.08.2016 16:04) → Version 2/3 (Andreas Steffen, 24.10.2016 22:31)
h1. New Hope Post-Quantum Key Exchange Algorithm
Implemented according to the paper "Post-quantum key exchange – a new hope":https://eprint.iacr.org/2015/1092.pdf by Erdem Alkim, Léo Ducas,
Thomas Pöppelmann and Peter Schwabe. The final SHA3-256 hash been omitted since IKE derives the IKE and IPsec session keys from the raw shared secret via a Pseudo Random Function (PRF), anyway.
A New Hope example scenario using post-quantum BLISS signatures can be found "here":https://www.strongswan.org/testing/testresults/swanctl/rw-newhope-bliss/ "here":https://www.strongswan.org/testing/testresults5dr/swanctl/rw-newhope-bliss/
Implemented according to the paper "Post-quantum key exchange – a new hope":https://eprint.iacr.org/2015/1092.pdf by Erdem Alkim, Léo Ducas,
Thomas Pöppelmann and Peter Schwabe. The final SHA3-256 hash been omitted since IKE derives the IKE and IPsec session keys from the raw shared secret via a Pseudo Random Function (PRF), anyway.
A New Hope example scenario using post-quantum BLISS signatures can be found "here":https://www.strongswan.org/testing/testresults/swanctl/rw-newhope-bliss/ "here":https://www.strongswan.org/testing/testresults5dr/swanctl/rw-newhope-bliss/