Releases: dconnolly/draft-connolly-cfrg-xwing-kem
draft-connolly-cfrg-xwing-kem-06
Since draft-connolly-cfrg-xwing-kem-05:
-
Fix several typos.
-
Change HPKE/TLS codepoint requests to the memorable 25519 + 203.
-
Add instruction for use in X.509. #21
Full Changelog: draft-connolly-cfrg-xwing-kem-05...draft-connolly-cfrg-xwing-kem-06
draft-connolly-cfrg-xwing-kem-05
Since draft-connolly-cfrg-xwing-kem-04:
-
Note that ML-KEM decapsulation key check is not required.
-
Properly refer to FIPS 203 dependencies. #20
-
Move label at the end. As everything fits within a single block of SHA3-256,
this does not make any difference. -
Use SHAKE-256 to stretch seed. This does not have any security or performance
effects: as we only squeeze 96 bytes, we perform a single Keccak permutation
whether SHAKE-128 or SHAKE-256 is used. The effective capacity of the sponge
in both cases is 832, which gives a security of 416 bits. It does require
less thought from anyone analysing X-Wing in a rush. -
Add HPKE codepoint.
-
Don't mark TLS entry as recommended before it has been through the
IETF consensus process. (Obviously the authors recommend X-Wing.)
Full Changelog: draft-connolly-cfrg-xwing-kem-04...draft-connolly-cfrg-xwing-kem-05
draft-connolly-cfrg-xwing-kem-04
draft-connolly-cfrg-xwing-kem-03
What's Changed
Full Changelog: draft-connolly-cfrg-xwing-kem-02...draft-connolly-cfrg-xwing-kem-03
Contributors
Assets 2
draft-connolly-cfrg-xwing-kem-02
Contributors
Assets 2
draft-connolly-cfrg-xwing-kem-01
What's Changed
Full Changelog: https://github.com/dconnolly/draft-connolly-cfrg-xwing-kem/commits/draft-connolly-cfrg-xwing-kem-01