Description
Support the ML-KEM key exchanges described in a current draft RFC.
Motivation
ML-KEM was standardized by NIST; it is basically Crystals-Kyber with a few modifications. See FIPS 203
OpenSSH is in the process of implementing this.
Alternatives considered
No response
Additional context
This needs
- An OpenSSH that implements at least one of the three ML-KEM variants defined in the draft RFC.
- A Bouncy Castle that provides ML-KEM. (BC 1.79 should have it; they are in the process of changing their Crystals-Kyber to ML-KEM.)
I already have the code for Apache MINA sshd ready; it'll only need some interoperability testing with an OpenSSH that supports ML-KEM.
Description
Support the ML-KEM key exchanges described in a current draft RFC.
Motivation
ML-KEM was standardized by NIST; it is basically Crystals-Kyber with a few modifications. See FIPS 203
OpenSSH is in the process of implementing this.
Alternatives considered
No response
Additional context
This needs
I already have the code for Apache MINA sshd ready; it'll only need some interoperability testing with an OpenSSH that supports ML-KEM.