On Wed, May 7, 2025 at 10:43 AM Richard Barnes <[email protected]> wrote:
> JOSE and COSE should adopt a single format for ML-KEM and ML-DSA private > keys, and that format should be the seed format. We should skate to where > the puck is headed. > For reference, we have added the following CBOR tags to the IANA registry: 40100 array ur:mlkem-private-key, Private key for MLKEM key encapsulation 40101 array ur:mlkem-public-key, Public key for MLKEM key encapsulation 40102 array ur:mlkem-ciphertext, Ciphertext for MLKEM key encapsulation 40103 array ur:mldsa-private-key, Private key for MLDSA signature generation 40104 array ur:mldsa-public-key, Public key for MLDSA signature verification 40105 array ur:mldsa-signature, MLDSA signature More details at https://github.com/BlockchainCommons/Research/blob/master/papers/bcr-2025-003-post-quantum.md Our reference for the key sizes and other parameters is the pqcrypto-mlkem and pqcrypto-mldsa crates, which are part of the PQClean project. These are implemented as part of our Gordian Envelope stack, and are used in deployment of a cryptocurrency wallet from Foundation Devices, and are beginning to be used by others. -- Christopher Allen
_______________________________________________ jose mailing list -- [email protected] To unsubscribe send an email to [email protected]
