ML-KEM and X-Wing Patches Posted for Linux to Help with Post-Quantum Security
10 hours ago
- #Linux
- #Post-Quantum Cryptography
- #ML-KEM
- Google's Linux cryptography expert Eric Biggers posted ML-KEM and X-Wing patches for Linux as proof-of-concept.
- ML-KEM is a quantum-resistant cryptographic standard, while X-Wing is a hybrid mechanism based on X25519 and ML-KEM-768.
- Patches aim to prepare Linux kernel security for quantum computing by strengthening cryptographic standards.
- These patches are not intended for immediate upstreaming; they await in-kernel users before integration.
- Biggers shared the patches ahead of demand, allowing experimentation.
- Support includes ML-KEM-768, ML-KEM-1024, and X-Wing hybrid KEM in the kernel's crypto library.
- ML-KEM functions are placed in CRYPTO_INTERNAL namespace for use in hybrid KEMs.
- Potential in-kernel users include NVMe authentication, Bluetooth, and WireGuard for post-quantum upgrades.
- Biggers suggests using X-Wing when possible for quantum-resistant key encapsulation.
- Patch series enables initial ML-KEM and X-Wing functionality for the Linux kernel.