Post-Quantum TLS with KEMs

Last updated on 2020-10-07 research, security

We investigate alternate ways to bring TLS into the post-quantum age. Notably, we try to get rid of the expensive signature schemes in the online handshake, by authenticating using only KEMs.

cryptography Post-Quantum key-encapsulation mechanisms KEM TLS

Thom Wiggers

PhD candidate at Radboud University

My research interests include (post-quantum) cryptography and protocols

Using (post-quantum) KEMs in TLS 1.3
Rephrasing TLS key exchange in terms of KEMs
Solving LPN Using Large Covering Codes
Time-invariant equality in assembly

Posts

KEMTLS on the Cryptography.fm podcast

Douglas and I appeared on Nadim’s new podcast ‘Cryptography FM’ to talk about KEMTLS

Thom Wiggers

2020-10-07 1 min read

Using (post-quantum) KEMs in TLS 1.3

The new TLS 1.3 standard [1] does not yet provide any support for post-quantum algorithms. In this blog post we’ll be talking about how we could negotiate a post-quantum key exchange using a (post-quantum) Key Encapsulation Mechanism (KEM). In the NIST Standardisation effort [2], many KEMs are currently under consideration.

Thom Wiggers

Last updated on 2018-10-22 3 min read research