Skip to content

Add an ML-KEM implementation #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 10 commits into from
Mar 1, 2024
Merged

Add an ML-KEM implementation #2

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
1809696
Add ML-KEM implementation
bifurcation Feb 7, 2024
60c4890
Pre-compute constants using const fn
bifurcation Feb 8, 2024
9fe6e2f
Use constant-time selection in decapsulation
bifurcation Feb 8, 2024
d7ceaf9
Make determinstic feature non-default
bifurcation Feb 8, 2024
20089d7
Remove redundant .gitignore
bifurcation Feb 15, 2024
3bad718
Add workspace-level Cargo.toml
bifurcation Mar 1, 2024
4e5404e
Convert from generic-array to hybrid-array
bifurcation Mar 1, 2024
48e9e2f
Use released version of hybrid-array
bifurcation Mar 1, 2024
d0945d4
Use standard KEM interfaces
bifurcation Mar 1, 2024
4d83d5d
Cargo clippy cleanup
bifurcation Mar 1, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 5 additions & 0 deletions Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,5 @@
[workspace]
resolver = "2"
members = [
"ml-kem",
]
28 changes: 28 additions & 0 deletions ml-kem/Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
[package]
name = "ml-kem"
version = "0.1.0"
edition = "2021"

[features]
default = []
deterministic = [] # Expose deterministic generation and encapsulation functions

[dependencies]
const-default = "1.0.0"
crypto-common = { version = "0.1.6", features = ["getrandom"] }
generic-array = { version = "1.0.0", features = ["const-default"] }
hybrid-array = { version = "0.2.0-rc.6" }
sha3 = "0.10.8"

[dev-dependencies]
criterion = "0.5.1"
hex = "0.4.3"
hex-literal = "0.4.1"
rand = "0.8.5"

[profile.bench]
debug = true

[[bench]]
name = "mlkem"
harness = false
59 changes: 59 additions & 0 deletions ml-kem/benches/mlkem.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,59 @@
use criterion::{criterion_group, criterion_main, Criterion};
use crypto_common::rand_core::CryptoRngCore;
use hybrid_array::{Array, ArraySize};
use ml_kem::*;

pub fn rand<L: ArraySize>(rng: &mut impl CryptoRngCore) -> Array<u8, L> {
let mut val = Array::<u8, L>::default();
rng.fill_bytes(&mut val);
val
}

fn criterion_benchmark(c: &mut Criterion) {
let mut rng = rand::thread_rng();
let d: B32 = rand(&mut rng);
let z: B32 = rand(&mut rng);
let m: B32 = rand(&mut rng);

let (dk, ek) = MlKem768::generate_deterministic(&d, &z);
let dk_bytes = dk.as_bytes();
let ek_bytes = ek.as_bytes();
let (ct, _sk) = ek.encapsulate(&mut rng).unwrap();

// Key generation
c.bench_function("keygen", |b| {
b.iter(|| {
let (dk, ek) = <MlKem768 as KemCore>::generate_deterministic(&d, &z);
let _dk_bytes = dk.as_bytes();
let _ek_bytes = ek.as_bytes();
})
});

// Encapsulation
c.bench_function("encapsulate", |b| {
b.iter(|| {
let ek = <MlKem768 as KemCore>::EncapsulationKey::from_bytes(&ek_bytes);
ek.encapsulate_deterministic(&m).unwrap();
})
});

// Decapsulation
c.bench_function("decapsulate", |b| {
b.iter(|| {
let dk = <MlKem768 as KemCore>::DecapsulationKey::from_bytes(&dk_bytes);
dk.decapsulate(&ct).unwrap();
})
});

// Round trip
c.bench_function("round_trip", |b| {
b.iter(|| {
let (dk, ek) = <MlKem768 as KemCore>::generate_deterministic(&d, &z);
let (ct, _sk) = ek.encapsulate(&mut rng).unwrap();
dk.decapsulate(&ct).unwrap();
})
});
}

criterion_group!(benches, criterion_benchmark);
criterion_main!(benches);
Loading