Implementation of Composite Keys and Encryption
JoaoDiogoDuarte opened this issue · 1 comments
Hello,
I came across this article discussing X.509 certificates in openssl-oqs. It's in Japanese, so I've taken the liberty to translate it through Google Translate, link is here.
Essentially, they are claiming that you all already implement the following IETF (expired) drafts:
- draft-ounsworth-pq-composite-encryption
- draft-ounsworth-pq-explicit-composite-keys
- draft-ounsworth-pq-composite-keys
I was wondering if that is accurate or if you use something different, please?
Thanks!
The composite/hybrid format for signatures/keys/certificates in the current version of OQS-OpenSSL is ad hoc, created before any of these drafts existed, and not the same as those drafts. It is our intention to move to those formats once they are stable, and I'm aware of some work being done already to prepare a pull request in oqs-provider to update to those formats.