OpenSSL 3 introduced a KEM API, which is an abstraction for the kinds of
cryptographic operations used by the NIST post-quantum cryptography
standards (i.e., FIPS-203).
KEM stands for "Key Encapsulation Mechanism". It's the preferred way to do
asymmetric cryptography. Even RSA-KEM is safer than ho
The ext-sodium API exposes the following functions:
* sodium_crypto_stream(int $len, string $nonce, string $key): string
* sodium_crypto_stream_keygen(): string
* sodium_crypto_stream_xor(string $message, string $nonce, string $key):
string
(And the new XChaCha variant landing in PHP 8.1, of cou
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi all,
As soon as I clear my plate, I'll be diving into getting the libsodium
RFC ready for debate and, eventually, voting. Look for that very soon.
Security Team
Paragon Initiative Enterprises
P.S. I'd like to share this (with an accompanying PG
