WireGuard is a VPN protocol with an efficient, DH-based handshake. Prior attempts at making it PQ heavily relied on Classic McEliece, which has deployment complications. We revisit …
In this talk, I explain that although the focus on and progress with post-quantum key exchange is great, that does not mean that we should relax about post-quantum authentication. …
I gave a guest lecture on TLS and the challenges and ongoing efforts to make it work with post-quantum primitives.
The TLS protocol (famous for `https://`) is perhaps the most-used cryptographic protocol. As such, it is extremely important that it gets migrated to post-quantum cryptography. …
We propose higher-security parametersets of CSIDH, and present highly-optimized implementations. We measure the performance when using these parameters in TLS, and show that the …
Invited lecture about TLS, its history and making TLS post quantum. I also discuss KEMTLS.
An introduction to formal analysis and our proof of the security of KEMTLS.
We make KEMTLS more efficient in scenarios where the client already has the server's long-term public key, for example through caching or because it's pre-installed.
In this paper, we study implementations of post-quantum signature schemes on resource-constrained devices. We focus on verification of signatures and cover NIST PQC round-3 …
Talk about KEMTLS on Cloudflare TV