Botan 3.9.0
Crypto and TLS for C&
kyber_encaps_base.h
Go to the documentation of this file.
1/*
2 * Key encapsulation base operations for Kyber
3 * (C) 2024 Jack Lloyd
4 * (C) 2024 René Meusel, Rohde & Schwarz Cybersecurity
5 *
6 * Botan is released under the Simplified BSD License (see license.txt)
7 */
8
9#ifndef BOTAN_KYBER_KEY_ENCAPSULATION_BASE_H_
10#define BOTAN_KYBER_KEY_ENCAPSULATION_BASE_H_
11
12#include <botan/internal/kyber_constants.h>
13#include <botan/internal/kyber_keys.h>
14#include <botan/internal/pk_ops_impl.h>
15
16namespace Botan {
17
18class Kyber_KEM_Operation_Base {
19 protected:
20 explicit Kyber_KEM_Operation_Base(const Kyber_PublicKeyInternal& pk) :
21 m_At(Kyber_Algos::sample_matrix(pk.rho(), true /* transposed */, pk.mode())) {}
22
23 const KyberPolyMat& precomputed_matrix_At() const { return m_At; }
24
25 private:
26 // The public key's matrix is pre-computed to avoid redundant work when
27 // encapsulating multiple keys. This matrix is needed for encapsulation as
28 // well as for the FO transform in the decapsulation.
29 KyberPolyMat m_At;
30};
31
32class Kyber_KEM_Encryptor_Base : public PK_Ops::KEM_Encryption_with_KDF,
33 protected Kyber_KEM_Operation_Base {
34 public:
35 size_t raw_kem_shared_key_length() const override { return mode().shared_key_bytes(); }
36
37 size_t encapsulated_key_length() const override { return mode().ciphertext_bytes(); }
38
39 void raw_kem_encrypt(std::span<uint8_t> out_encapsulated_key,
40 std::span<uint8_t> out_shared_key,
41 RandomNumberGenerator& rng) final {
42 encapsulate(StrongSpan<KyberCompressedCiphertext>(out_encapsulated_key),
43 StrongSpan<KyberSharedSecret>(out_shared_key),
44 rng);
45 }
46
47 protected:
50
51 virtual void encapsulate(StrongSpan<KyberCompressedCiphertext> out_encapsulated_key,
52 StrongSpan<KyberSharedSecret> out_shared_key,
53 RandomNumberGenerator& rng) = 0;
54
55 virtual const KyberConstants& mode() const = 0;
56};
57
58class Kyber_KEM_Decryptor_Base : public PK_Ops::KEM_Decryption_with_KDF,
59 protected Kyber_KEM_Operation_Base {
60 public:
61 size_t raw_kem_shared_key_length() const override { return mode().shared_key_bytes(); }
62
63 size_t encapsulated_key_length() const override { return mode().ciphertext_bytes(); }
64
65 void raw_kem_decrypt(std::span<uint8_t> out_shared_key, std::span<const uint8_t> encapsulated_key) final {
66 decapsulate(StrongSpan<KyberSharedSecret>(out_shared_key),
67 StrongSpan<const KyberCompressedCiphertext>(encapsulated_key));
68 }
69
70 protected:
73
74 virtual void decapsulate(StrongSpan<KyberSharedSecret> out_shared_key,
75 StrongSpan<const KyberCompressedCiphertext> encapsulated_key) = 0;
76
77 virtual const KyberConstants& mode() const = 0;
78};
79
80} // namespace Botan
81
82#endif
Botan::KyberConstants::shared_key_bytes
constexpr size_t shared_key_bytes() const
byte length of the shared key
Definition kyber_constants.h:108
Botan::KyberConstants::ciphertext_bytes
size_t ciphertext_bytes() const
byte length of an encoded ciphertext
Definition kyber_constants.h:105
Botan::Kyber_KEM_Decryptor_Base::raw_kem_shared_key_length
size_t raw_kem_shared_key_length() const override
Definition kyber_encaps_base.h:61
Botan::Kyber_KEM_Decryptor_Base::mode
virtual const KyberConstants & mode() const =0
Botan::Kyber_KEM_Decryptor_Base::encapsulated_key_length
size_t encapsulated_key_length() const override
Definition kyber_encaps_base.h:63
Botan::Kyber_KEM_Decryptor_Base::raw_kem_decrypt
void raw_kem_decrypt(std::span< uint8_t > out_shared_key, std::span< const uint8_t > encapsulated_key) final
Definition kyber_encaps_base.h:65
Botan::Kyber_KEM_Decryptor_Base::Kyber_KEM_Decryptor_Base
Kyber_KEM_Decryptor_Base(std::string_view kdf, const Kyber_PublicKeyInternal &pk)
Definition kyber_encaps_base.h:71
Botan::Kyber_KEM_Decryptor_Base::decapsulate
virtual void decapsulate(StrongSpan< KyberSharedSecret > out_shared_key, StrongSpan< const KyberCompressedCiphertext > encapsulated_key)=0
Botan::Kyber_KEM_Encryptor_Base::encapsulate
virtual void encapsulate(StrongSpan< KyberCompressedCiphertext > out_encapsulated_key, StrongSpan< KyberSharedSecret > out_shared_key, RandomNumberGenerator &rng)=0
Botan::Kyber_KEM_Encryptor_Base::raw_kem_encrypt
void raw_kem_encrypt(std::span< uint8_t > out_encapsulated_key, std::span< uint8_t > out_shared_key, RandomNumberGenerator &rng) final
Definition kyber_encaps_base.h:39
Botan::Kyber_KEM_Encryptor_Base::encapsulated_key_length
size_t encapsulated_key_length() const override
Definition kyber_encaps_base.h:37
Botan::Kyber_KEM_Encryptor_Base::mode
virtual const KyberConstants & mode() const =0
Botan::Kyber_KEM_Encryptor_Base::raw_kem_shared_key_length
size_t raw_kem_shared_key_length() const override
Definition kyber_encaps_base.h:35
Botan::Kyber_KEM_Encryptor_Base::Kyber_KEM_Encryptor_Base
Kyber_KEM_Encryptor_Base(std::string_view kdf, const Kyber_PublicKeyInternal &pk)
Definition kyber_encaps_base.h:48
Botan::Kyber_KEM_Operation_Base::Kyber_KEM_Operation_Base
Kyber_KEM_Operation_Base(const Kyber_PublicKeyInternal &pk)
Definition kyber_encaps_base.h:20
Botan::Kyber_KEM_Operation_Base::precomputed_matrix_At
const KyberPolyMat & precomputed_matrix_At() const
Definition kyber_encaps_base.h:23
Botan::Kyber_PublicKeyInternal
Definition kyber_keys.h:43
Botan::PK_Ops::KEM_Decryption_with_KDF
Definition pk_ops_impl.h:149
Botan::PK_Ops::KEM_Decryption_with_KDF::KEM_Decryption_with_KDF
KEM_Decryption_with_KDF(std::string_view kdf)
Definition pk_ops.cpp:262
Botan::PK_Ops::KEM_Encryption_with_KDF
Definition pk_ops_impl.h:124
Botan::PK_Ops::KEM_Encryption_with_KDF::KEM_Encryption_with_KDF
KEM_Encryption_with_KDF(std::string_view kdf)
Definition pk_ops.cpp:227
Botan::Kyber_Algos
Definition kyber_algos.cpp:25
Botan::PK_Ops
Definition pk_ops.h:36
Botan::rho
BOTAN_FORCE_INLINE constexpr T rho(T x)
Definition rotate.h:53
Botan::KyberPolyMat
Botan::CRYSTALS::PolynomialMatrix< KyberPolyTraits > KyberPolyMat
Definition kyber_types.h:27
Generated by doxygen 1.14.0