-
Notifications
You must be signed in to change notification settings - Fork 654
Contribution wishlist
Updated September 14, 205
This page highlights our "wishlist" for substantial contributions to liboqs. While issues exist for most or all of these desired improvements, it can be difficult to get the big picture from a long list of issues, so this document supplements the issue list with a big picture. Contributors interested in taking leadership on one of these issues would be very welcome, and are encouraged to discuss the topic on the relevant issues to get advice on getting started.
Update FrodoKEM to ISO spec. The current implementation of liboqs in FrodoKEM is based on the NIST Round 3 version. Since then, FrodoKEM has been revised to include a new variant ("salted FrodoKEM"). The updated implementation is available in the upstream repository. Note that FrodoKEM is imported manually into liboqs, rather than using the copy-from-upstream mechanism.
Update Falcon once FIPS IPD comes out. Once the FIPS initial public draft for Falcon/FN-DSA is available, liboqs should be updated to implement that.
Update HQC once FIPS IPD comes out. Once the FIPS initial public draft for HQC is available, liboqs should be updated to implement that.
Solicit more schemes from NIST signature on-ramp round 2.
- In progress:
- Issue opened:
- Known interest:
- SDitH (by @pablo-gf)
- To be addressed:
- LESS, HAWK, Mirath, MQOM, PERK, RYDE, and QR-UOV (not to be confused with UOV)
Improve support and flexibility for FIPS-required key validation in ML-KEM. See https://github.com/open-quantum-safe/liboqs/issues/2060 and https://github.com/open-quantum-safe/liboqs/issues/2088.
Integrate ML-DSA from pq-code-package once available. Once the PQ Code Package's mldsa-native implementation is ready, replace our ML-DSA implementation with that. A preliminary test of this was done in https://github.com/open-quantum-safe/liboqs/pull/2222.
Support additional ML-DSA options from FIPS 204 (externalMu, prehash, deterministic).
Improve constant-time code and detection tooling. Multiple angles to this:
- Extend constant-time testing to cover more configurations
- Enable data-independent timing features on available on platforms, such as in Apple Silicon.
- Some of this work is the focus of a Linux Foundation mentorship in the Open Quantum Safe project.
- Rework code import scripts to avoid duplication when handling multiple variants.