New Hope Post-Quantum Key Exchange Algorithm » History » Version 3
Noel Kuntze, 27.10.2016 22:19
SHAKE128 and ChaCha20
| 1 | 1 | Andreas Steffen | h1. New Hope Post-Quantum Key Exchange Algorithm |
|---|---|---|---|
| 2 | 1 | Andreas Steffen | |
| 3 | 1 | Andreas Steffen | Implemented according to the paper "Post-quantum key exchange – a new hope":https://eprint.iacr.org/2015/1092.pdf by Erdem Alkim, Léo Ducas, |
| 4 | 1 | Andreas Steffen | Thomas Pöppelmann and Peter Schwabe. The final SHA3-256 hash been omitted since IKE derives the IKE and IPsec session keys from the raw shared secret via a Pseudo Random Function (PRF), anyway. |
| 5 | 1 | Andreas Steffen | |
| 6 | 3 | Noel Kuntze | A New Hope example scenario using post-quantum BLISS signatures can be found "here":https://www.strongswan.org/testing/testresults/swanctl/rw-newhope-bliss/ |
| 7 | 3 | Noel Kuntze | |
| 8 | 3 | Noel Kuntze | This plugin requires implementations of the SHAKE128 and the ChaCha20 XOF functions. The SHAKE128 XOF implementation is provided by the *sha3* plugin. The ChaCha20 XOF implementation is provided by the *chapoly* plugin. |