Skip to content

feat(key-protocol/nssa)!: PQ resistance primitives for vsk/vpk for shared key agreement#474

Open
jonesmarvin8 wants to merge 9 commits into
mainfrom
marvin/pq-privacy-encryption
Open

feat(key-protocol/nssa)!: PQ resistance primitives for vsk/vpk for shared key agreement#474
jonesmarvin8 wants to merge 9 commits into
mainfrom
marvin/pq-privacy-encryption

Conversation

@jonesmarvin8
Copy link
Copy Markdown
Collaborator

@jonesmarvin8 jonesmarvin8 commented May 12, 2026
edited
Loading

🎯 Purpose

Shifts LEE to a PQ secure scheme, Kyber-768, for the key agreement. This requires changing the viewing keys from secp256k1 related data structures to byte arrays that can be used to produce ML-KEM-768 encapsulation and decapsulation keys. Updated key protocol for viewing key changes.

⚙️ Approach

  • Update key protocol to change vsk and vpk generation.
  • Update shared key generation logic to use Kyber-768.
  • Update specs.md portions related to key agreement (only these sections are included).

🧪 How to Test

Refactored to replace ECIES with Kyber. As such, all pre-existing tests should still work. Additionally, added kem_to_chacha20_round_trip to demonstrate encapsulation and decapsulation does not distort account data.

🔗 Dependencies

None.

🔜 Future Work

None.

📋 PR Completion Checklist

  • Complete PR description
  • Implement the core functionality
  • Add/update tests
  • Add/update documentation and inline comments

@jonesmarvin8 jonesmarvin8 changed the title initialize pq encryption changes feat(key-protocol/nssa)!: PQ resistance primitives for vsk/vpk for shared key agreement May 18, 2026
jonesmarvin8 and others added 6 commits May 19, 2026 17:52
@jonesmarvin8
Merge branch 'main' into marvin/pq-privacy-encryption
dc7378d
@jonesmarvin8
add test and other fixes
8253002
@jonesmarvin8
ci fixes
8492f99
@jonesmarvin8
fix unit tests
f246ebe
@jonesmarvin8 @claude
Merge branch 'main' into marvin/pq-privacy-encryption
cf0ef6f 
Binary artifact conflicts resolved by keeping branch versions (compiled
against the PQ codebase). All source conflicts auto-merged cleanly.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
@jonesmarvin8
updates from main and ci
fa569da
@jonesmarvin8 jonesmarvin8 marked this pull request as ready for review May 21, 2026 23:24
Pravdyvy
Pravdyvy reviewed May 25, 2026
View reviewed changes
Copy link
Copy Markdown
Collaborator

@Pravdyvy Pravdyvy left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I see, that some keys grow in magnitude. It will be very interesting to look at performance.
Unfortunately still not in CI, but can be called easily with just bench after merging main.

@jonesmarvin8
Copy link
Copy Markdown
Collaborator Author

jonesmarvin8 commented May 26, 2026

I see, that some keys grow in magnitude. It will be very interesting to look at performance. Unfortunately still not in CI, but can be called easily with just bench after merging main.

What do you mean they grow in magnitude?
vsk, vpk should be fixed sizes. And the resulting ephemeral public key from a key agreement should be fixed size as well.

vsk is 64-bytes
vpk is 1kb
ephemeral public key is 1kb.

@Pravdyvy
Copy link
Copy Markdown
Collaborator

Pravdyvy commented May 26, 2026

I see, that some keys grow in magnitude. It will be very interesting to look at performance. Unfortunately still not in CI, but can be called easily with just bench after merging main.

What do you mean they grow in magnitude? vsk, vpk should be fixed sizes. And the resulting ephemeral public key from a key agreement should be fixed size as well.

vsk is 64-bytes vpk is 1kb ephemeral public key is 1kb.

I mean that they grew in comparison to main. vpk before was 33 bytes. It is interesting to see how it affects performance.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Pravdyvy Pravdyvy Pravdyvy left review comments

@Arjentix Arjentix Awaiting requested review from Arjentix

@moudyellaz moudyellaz Awaiting requested review from moudyellaz

@schouhy schouhy Awaiting requested review from schouhy

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jonesmarvin8 @Pravdyvy