Skip to content

Add MLKEM1024-P384 hybrid KEM support in HPKE #14722

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
alex wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Add MLKEM1024-P384 hybrid KEM support in HPKE #14722

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
455a7be
Add MLKEM1024-P384 hybrid KEM support in HPKE
claude Apr 23, 2026
a6410ab
Address review comments on #14722
claude Apr 23, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
45 changes: 45 additions & 0 deletions docs/hazmat/primitives/hpke.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -110,6 +110,13 @@ specifying auxiliary authenticated information.
Public and private keys are :class:`MLKEM768X25519PublicKey` and
:class:`MLKEM768X25519PrivateKey`.

.. attribute:: MLKEM1024_P384

A hybrid KEM combining ML-KEM-1024 with P-384. Post-quantum secure.
Only available on backends that support ML-KEM. Public and private
keys are :class:`MLKEM1024P384PublicKey` and
:class:`MLKEM1024P384PrivateKey`.

.. class:: MLKEM768X25519PrivateKey(mlkem_key, x25519_key)

.. versionadded:: 47.0.0
Expand Down Expand Up @@ -148,6 +155,44 @@ specifying auxiliary authenticated information.
:param x25519_key: The X25519 public key component.
:type x25519_key: :class:`~cryptography.hazmat.primitives.asymmetric.x25519.X25519PublicKey`

.. class:: MLKEM1024P384PrivateKey(mlkem_key, p384_key)

.. versionadded:: 47.0.0

A hybrid ML-KEM-1024 / P-384 private key for use with
:attr:`KEM.MLKEM1024_P384`. Combines an
:class:`~cryptography.hazmat.primitives.asymmetric.mlkem.MLKEM1024PrivateKey`
and an
:class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey`
on the SECP384R1 curve into a single recipient key.

:param mlkem_key: The ML-KEM-1024 private key component.
:type mlkem_key: :class:`~cryptography.hazmat.primitives.asymmetric.mlkem.MLKEM1024PrivateKey`

:param p384_key: The P-384 private key component.
:type p384_key: :class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey`

.. method:: public_key()

:returns: :class:`MLKEM1024P384PublicKey`

.. class:: MLKEM1024P384PublicKey(mlkem_key, p384_key)

.. versionadded:: 47.0.0

A hybrid ML-KEM-1024 / P-384 public key for use with
:attr:`KEM.MLKEM1024_P384`. Combines an
:class:`~cryptography.hazmat.primitives.asymmetric.mlkem.MLKEM1024PublicKey`
and an
:class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey`
on the SECP384R1 curve into a single recipient key.

:param mlkem_key: The ML-KEM-1024 public key component.
:type mlkem_key: :class:`~cryptography.hazmat.primitives.asymmetric.mlkem.MLKEM1024PublicKey`

:param p384_key: The P-384 public key component.
:type p384_key: :class:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey`

.. class:: KDF

An enumeration of key derivation functions.
Expand Down
28 changes: 24 additions & 4 deletions src/cryptography/hazmat/bindings/_rust/openssl/hpke.pyi
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,7 @@ class KEM:
MLKEM768: KEM
MLKEM1024: KEM
MLKEM768_X25519: KEM
MLKEM1024_P384: KEM

class KDF:
HKDF_SHA256: KDF
Expand Down Expand Up @@ -41,6 +42,21 @@ class MLKEM768X25519PublicKey:
x25519_key: x25519.X25519PublicKey,
) -> None: ...

class MLKEM1024P384PrivateKey:
def __init__(
self,
mlkem_key: mlkem.MLKEM1024PrivateKey,
p384_key: ec.EllipticCurvePrivateKey,
) -> None: ...
def public_key(self) -> MLKEM1024P384PublicKey: ...

class MLKEM1024P384PublicKey:
def __init__(
self,
mlkem_key: mlkem.MLKEM1024PublicKey,
p384_key: ec.EllipticCurvePublicKey,
) -> None: ...

class Suite:
def __init__(self, kem: KEM, kdf: KDF, aead: AEAD) -> None: ...
def encrypt(
Expand All @@ -50,7 +66,8 @@ class Suite:
| ec.EllipticCurvePublicKey
| mlkem.MLKEM768PublicKey
| mlkem.MLKEM1024PublicKey
| MLKEM768X25519PublicKey,
| MLKEM768X25519PublicKey
| MLKEM1024P384PublicKey,
info: Buffer | None = None,
) -> bytes: ...
def decrypt(
Expand All @@ -60,7 +77,8 @@ class Suite:
| ec.EllipticCurvePrivateKey
| mlkem.MLKEM768PrivateKey
| mlkem.MLKEM1024PrivateKey
| MLKEM768X25519PrivateKey,
| MLKEM768X25519PrivateKey
| MLKEM1024P384PrivateKey,
info: Buffer | None = None,
) -> bytes: ...

Expand All @@ -71,7 +89,8 @@ def _encrypt_with_aad(
| ec.EllipticCurvePublicKey
| mlkem.MLKEM768PublicKey
| mlkem.MLKEM1024PublicKey
| MLKEM768X25519PublicKey,
| MLKEM768X25519PublicKey
| MLKEM1024P384PublicKey,
info: Buffer | None = None,
aad: Buffer | None = None,
) -> bytes: ...
Expand All @@ -82,7 +101,8 @@ def _decrypt_with_aad(
| ec.EllipticCurvePrivateKey
| mlkem.MLKEM768PrivateKey
| mlkem.MLKEM1024PrivateKey
| MLKEM768X25519PrivateKey,
| MLKEM768X25519PrivateKey
| MLKEM1024P384PrivateKey,
info: Buffer | None = None,
aad: Buffer | None = None,
) -> bytes: ...
4 changes: 4 additions & 0 deletions src/cryptography/hazmat/primitives/hpke.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,6 +11,8 @@
KEM = rust_openssl.hpke.KEM
MLKEM768X25519PrivateKey = rust_openssl.hpke.MLKEM768X25519PrivateKey
MLKEM768X25519PublicKey = rust_openssl.hpke.MLKEM768X25519PublicKey
MLKEM1024P384PrivateKey = rust_openssl.hpke.MLKEM1024P384PrivateKey
MLKEM1024P384PublicKey = rust_openssl.hpke.MLKEM1024P384PublicKey
Suite = rust_openssl.hpke.Suite

__all__ = [
Expand All @@ -19,5 +21,7 @@
"KEM",
"MLKEM768X25519PrivateKey",
"MLKEM768X25519PublicKey",
"MLKEM1024P384PrivateKey",
"MLKEM1024P384PublicKey",
"Suite",
]
Loading