Botan 3.11.0
Crypto and TLS for C&
kyber_encaps_base.h
Go to the documentation of this file.
1/*
2 * Key encapsulation base operations for Kyber
3 * (C) 2024 Jack Lloyd
4 * (C) 2024 René Meusel, Rohde & Schwarz Cybersecurity
5 *
6 * Botan is released under the Simplified BSD License (see license.txt)
7 */
8
9#ifndef BOTAN_KYBER_KEY_ENCAPSULATION_BASE_H_
10#define BOTAN_KYBER_KEY_ENCAPSULATION_BASE_H_
11
12#include <botan/internal/kyber_constants.h>
13#include <botan/internal/kyber_keys.h>
14#include <botan/internal/pk_ops_impl.h>
15
16namespace Botan {
17
18class Kyber_KEM_Operation_Base {
19 protected:
20 explicit Kyber_KEM_Operation_Base(const Kyber_PublicKeyInternal& pk) :
21 m_mode(pk.mode()), m_At(Kyber_Algos::sample_matrix(pk.rho(), true /* transposed */, m_mode)) {}
22
23 const KyberConstants& mode() const { return m_mode; }
24
25 const KyberPolyMat& precomputed_matrix_At() const { return m_At; }
26
27 private:
28 const KyberConstants& m_mode;
29
30 // The public key's matrix is pre-computed to avoid redundant work when
31 // encapsulating multiple keys. This matrix is needed for encapsulation as
32 // well as for the Fujisaki-Okamoto transform in the decapsulation.
33 KyberPolyMat m_At;
34};
35
36class Kyber_KEM_Encryptor_Base : public PK_Ops::KEM_Encryption_with_KDF,
37 protected Kyber_KEM_Operation_Base {
38 public:
39 size_t raw_kem_shared_key_length() const override { return mode().shared_key_bytes(); }
40
41 size_t encapsulated_key_length() const override { return mode().ciphertext_bytes(); }
42
43 void raw_kem_encrypt(std::span<uint8_t> out_encapsulated_key,
44 std::span<uint8_t> out_shared_key,
45 RandomNumberGenerator& rng) final {
46 encapsulate(StrongSpan<KyberCompressedCiphertext>(out_encapsulated_key),
47 StrongSpan<KyberSharedSecret>(out_shared_key),
48 rng);
49 }
50
51 protected:
54
55 virtual void encapsulate(StrongSpan<KyberCompressedCiphertext> out_encapsulated_key,
56 StrongSpan<KyberSharedSecret> out_shared_key,
57 RandomNumberGenerator& rng) = 0;
58};
59
60class Kyber_KEM_Decryptor_Base : public PK_Ops::KEM_Decryption_with_KDF,
61 protected Kyber_KEM_Operation_Base {
62 public:
63 size_t raw_kem_shared_key_length() const override { return mode().shared_key_bytes(); }
64
65 size_t encapsulated_key_length() const override { return mode().ciphertext_bytes(); }
66
67 void raw_kem_decrypt(std::span<uint8_t> out_shared_key, std::span<const uint8_t> encapsulated_key) final {
68 decapsulate(StrongSpan<KyberSharedSecret>(out_shared_key),
69 StrongSpan<const KyberCompressedCiphertext>(encapsulated_key));
70 }
71
72 protected:
75
76 virtual void decapsulate(StrongSpan<KyberSharedSecret> out_shared_key,
77 StrongSpan<const KyberCompressedCiphertext> encapsulated_key) = 0;
78};
79
80} // namespace Botan
81
82#endif
Botan::KyberConstants::shared_key_bytes
constexpr size_t shared_key_bytes() const
byte length of the shared key
Definition kyber_constants.h:111
Botan::KyberConstants::ciphertext_bytes
size_t ciphertext_bytes() const
byte length of an encoded ciphertext
Definition kyber_constants.h:108
Botan::Kyber_KEM_Decryptor_Base::raw_kem_shared_key_length
size_t raw_kem_shared_key_length() const override
Definition kyber_encaps_base.h:63
Botan::Kyber_KEM_Decryptor_Base::encapsulated_key_length
size_t encapsulated_key_length() const override
Definition kyber_encaps_base.h:65
Botan::Kyber_KEM_Decryptor_Base::raw_kem_decrypt
void raw_kem_decrypt(std::span< uint8_t > out_shared_key, std::span< const uint8_t > encapsulated_key) final
Definition kyber_encaps_base.h:67
Botan::Kyber_KEM_Decryptor_Base::Kyber_KEM_Decryptor_Base
Kyber_KEM_Decryptor_Base(std::string_view kdf, const Kyber_PublicKeyInternal &pk)
Definition kyber_encaps_base.h:73
Botan::Kyber_KEM_Decryptor_Base::decapsulate
virtual void decapsulate(StrongSpan< KyberSharedSecret > out_shared_key, StrongSpan< const KyberCompressedCiphertext > encapsulated_key)=0
Botan::Kyber_KEM_Encryptor_Base::encapsulate
virtual void encapsulate(StrongSpan< KyberCompressedCiphertext > out_encapsulated_key, StrongSpan< KyberSharedSecret > out_shared_key, RandomNumberGenerator &rng)=0
Botan::Kyber_KEM_Encryptor_Base::raw_kem_encrypt
void raw_kem_encrypt(std::span< uint8_t > out_encapsulated_key, std::span< uint8_t > out_shared_key, RandomNumberGenerator &rng) final
Definition kyber_encaps_base.h:43
Botan::Kyber_KEM_Encryptor_Base::encapsulated_key_length
size_t encapsulated_key_length() const override
Definition kyber_encaps_base.h:41
Botan::Kyber_KEM_Encryptor_Base::raw_kem_shared_key_length
size_t raw_kem_shared_key_length() const override
Definition kyber_encaps_base.h:39
Botan::Kyber_KEM_Encryptor_Base::Kyber_KEM_Encryptor_Base
Kyber_KEM_Encryptor_Base(std::string_view kdf, const Kyber_PublicKeyInternal &pk)
Definition kyber_encaps_base.h:52
Botan::Kyber_KEM_Operation_Base::Kyber_KEM_Operation_Base
Kyber_KEM_Operation_Base(const Kyber_PublicKeyInternal &pk)
Definition kyber_encaps_base.h:20
Botan::Kyber_KEM_Operation_Base::precomputed_matrix_At
const KyberPolyMat & precomputed_matrix_At() const
Definition kyber_encaps_base.h:25
Botan::Kyber_KEM_Operation_Base::mode
const KyberConstants & mode() const
Definition kyber_encaps_base.h:23
Botan::Kyber_PublicKeyInternal
Definition kyber_keys.h:43
Botan::PK_Ops::KEM_Decryption_with_KDF
Definition pk_ops_impl.h:149
Botan::PK_Ops::KEM_Decryption_with_KDF::KEM_Decryption_with_KDF
KEM_Decryption_with_KDF(std::string_view kdf)
Definition pk_ops.cpp:266
Botan::PK_Ops::KEM_Encryption_with_KDF
Definition pk_ops_impl.h:124
Botan::PK_Ops::KEM_Encryption_with_KDF::KEM_Encryption_with_KDF
KEM_Encryption_with_KDF(std::string_view kdf)
Definition pk_ops.cpp:231
Botan::Kyber_Algos
Definition kyber_algos.cpp:27
Botan::PK_Ops
Definition pk_ops.h:36
Botan::rho
BOTAN_FORCE_INLINE constexpr T rho(T x)
Definition rotate.h:53
Botan::KyberPolyMat
Botan::CRYSTALS::PolynomialMatrix< KyberPolyTraits > KyberPolyMat
Definition kyber_types.h:27
Generated by doxygen 1.15.0