Crystals-Kyber in Python

About

just a toy implementation to better understand the algorithm
all three 512, 768 and 1024 sec levels.
ported from the reference and the Go Implementation, so not the fanciest Python code
not hardened against (timing/other) side channel attacks
test coverage is poor, use at your own risk

Just take a look at ccakem.py. Functions

correspond directly to the spec. For kem_encaps you can optionally provide a custom seed which is useful for debugging.

Typical kem, e.g. 512 sec level, would be

priv, pub = kem_keygen512()
secret1, cipher = kem_encaps512(pub)
secret2 = kem_decaps512(priv, cipher)

Name		Name	Last commit message	Last commit date
Latest commit History 22 Commits
PQCkemKAT_1632.rsp		PQCkemKAT_1632.rsp
PQCkemKAT_2400.rsp		PQCkemKAT_2400.rsp
PQCkemKAT_3168.rsp		PQCkemKAT_3168.rsp
README.md		README.md
ccakem.py		ccakem.py
cpake.py		cpake.py
indcpa.py		indcpa.py
ntt.py		ntt.py
params.py		params.py
poly.py		poly.py
prf.py		prf.py
requirements.txt		requirements.txt
test_ccakem.py		test_ccakem.py
test_cpake.py		test_cpake.py
test_indcpa.py		test_indcpa.py
test_ntt.py		test_ntt.py
test_poly.py		test_poly.py
test_prf.py		test_prf.py
test_util.py		test_util.py
util.py		util.py