On Thu, 13 Apr 2023 22:29:34 GMT, Weijun Wang <wei...@openjdk.org> wrote:
>> The KEM API and DHKEM impl. Note that this PR uses new methods in >> https://github.com/openjdk/jdk/pull/13250. > > Weijun Wang has updated the pull request incrementally with one additional > commit since the last revision: > > spec change, getAlgorithm > _Mailing list message from [Stephen > Farrell](mailto:stephen.farr...@cs.tcd.ie) on > [security-dev](mailto:security-...@mail.openjdk.org):_ > > Hi, > > Apologies for the interruption from the sidelines but I have a query if > that's ok. > > Is there any relationship between this work and RFC1980 which defines HPKE, > being a way of encrypting to a public value using a KEM? We know about HPKE, and it can makes use of the DHKEM implementation here (if the AuthEncap/AuthDecap functions are not used). However, we (Oracle's Java SE Security Team) don't have a plan to include HPKE inside OpenJDK yet. This PR is mainly about adding the KEM SPI so 3rd security providers can implement other KEM algorithms. DHKEM is included mainly to prove that the API is usable. ------------- PR Comment: https://git.openjdk.org/jdk/pull/13256#issuecomment-1507688812
