NewHope

Post-quantum key encapsulation

NewHope

NewHope is a key-exchange protocol based on the Ring-Learning-with-Errors (Ring-LWE) problem. It was submitted to the NIST post-quantum crypto project. NewHope made it into Round 2 of the standardization process but was not included in Round 3. A summary of NIST's view on the 26 second-round candidates and a rationale for the selection can be found in NIST Internal Report NISTIR 8309. The NewHope submission proposes four different instantiations:

  • NewHope512-CPA-KEM and NewHope1024-CPA-KEM, which are IND-CPA-secure key encapsulation mechanisms which target level 1 and level 5, respectively, in the NIST call for proposals (matching or exceeding the brute-force security of AES-128 and AES-256, respectively)
  • NewHope512-CCA-KEM and NewHope1024-CCA-KEM, which are IND-CCA-secure key encapsulation mechanisms which target level 1 and level 5, respectively, in the NIST call for proposals (matching or exceeding the brute-force security of AES-128 and AES-256, respectively)

News

NewHope Team

Additional Round Two Contributors

  • Martin R. Albrecht
  • Emmanuela Orsini
  • Valery Osheter
  • Kenneth G. Paterson
  • Guy Peer
  • Nigel P. Smart