Paper 2024/1287

Basic Lattice Cryptography: The concepts behind Kyber (ML-KEM) and Dilithium (ML-DSA)

Vadim Lyubashevsky, IBM Research Europe, Zurich
Abstract

This tutorial focuses on describing the fundamental mathematical concepts and design decisions used in the two ``main'' lattice schemes standardized by NIST and included in the CNSA 2.0 algorithmic suite. They are the KEM / encryption scheme CRYSTALS-Kyber (ML-KEM) and the signature scheme CRYSTALS-Dilithium (ML-DSA) . In addition, we will also give the main ideas behind other lattice-based KEMs like Frodo and NTRU.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Preprint.
Keywords
Lattice CrytpographyKyberDilithiumML-KEMML-DSA
Contact author(s)
vadim lyubash @ gmail com
History
2024-12-20: last of 7 revisions
2024-08-15: received
See all versions
Short URL
https://ia.cr/2024/1287
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2024/1287,
      author = {Vadim Lyubashevsky},
      title = {Basic Lattice Cryptography: The concepts behind Kyber ({ML}-{KEM}) and Dilithium ({ML}-{DSA})},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/1287},
      year = {2024},
      url = {https://eprint.iacr.org/2024/1287}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.