Skip to main content
Version: 0.1.25

Public key crypto

Public key cryptography is split into:

  • ECC (Elliptic curve crypto) — Curves, points, keys, ECDH, ECDSA, and bignum helpers.
  • RSA — Key generation, encryption, decryption, and signatures.
  • DSA — Digital Signature Algorithm (FIPS 186-4): domain parameters, key generation, signing, and verification.
  • Diffie-Hellman (FFDHE) — Finite-field DH group parameters, key generation, shared secret.
  • X25519 — Curve25519 key agreement.
  • X448 — Curve448 key agreement.
  • Ed25519 — EdDSA signatures over Curve25519.
  • Ed448 — EdDSA signatures over Curve448.
  • ML-KEM — Post-quantum key encapsulation (FIPS 203).
  • ML-DSA — Post-quantum signatures (FIPS 204).

Enablement flags

Key build flags:

  • NOXTLS_CFG_FEATURE_PKC (base PKC)
  • NOXTLS_CFG_FEATURE_RSA, NOXTLS_CFG_FEATURE_ECC, NOXTLS_CFG_FEATURE_DSA, NOXTLS_CFG_FEATURE_DH
  • NOXTLS_CFG_FEATURE_X25519, NOXTLS_CFG_FEATURE_X448
  • NOXTLS_CFG_FEATURE_ED25519, NOXTLS_CFG_FEATURE_ED448
  • NOXTLS_CFG_FEATURE_ML_KEM, NOXTLS_CFG_FEATURE_ML_DSA

Dependency checks are enforced by Build Configuration Checks.