ISARA Catalyst OpenSSL Connector

Integrate quantum-safe security into existing OpenSSL deployments

The ISARA Catalyst OpenSSL Connector allows you to easily integrate the ISARA Radiate™ Quantum-Safe Toolkit’s cryptographic library of quantum-safe algorithms into your existing OpenSSL deployment.

In addition to exposing our library through the OpenSSL crypto engine, we’ve also integrated the quantum-safe algorithms into OpenSSL’s X.509, TLS and CMS implementations.

The ISARA Catalyst OpenSSL Connector is available in April 2019.

Easy to integrate

There’s no impact to your current integration of OpenSSL; simply apply the patch and reference our expertly compiled sample scripts to get started using quantum-safe security today.

Agile Digital Certificate Ready

We’ve designed it to support the ISARA Catalyst Agile Digital Certificate Technology so that you can build in agility using a standards-based approach. This allows for dual-algorithm X.509 certificates that support both classical and quantum-safe algorithms.

START YOUR QUANTUM-SAFE MIGRATION TODAY

Our team of quantum-safe security experts can help.

ARE YOU A DEVELOPER?

We’ve created these materials just for you.

Technical Specifications

  • Quantum-safe algorithms exposed through EVP API integration
    • Digital signature schemes:
      • Dilithium
      • HSS (Hierarchical Signature Scheme)
      • Rainbow
      • SPHINCS+
      • XMSS (eXtended Merkle Signature Scheme)
      • XMSSMT (multi-tree XMSS)
    • Key agreement schemes:
      • FrodoDH
      • NewHopeDH
      • SIDH (Supersingular Isogeny Diffie-Hellman)
    • Key encapsulation mechanisms:
      • Classic McEliece
      • FrodoKEM
      • Kyber
      • NTRUPrime
      • SIKE (Supersingular Isogeny Key Exchange)
  • Quantum-safe algorithms integrated into TLS, CMS, X.509
  • ISARA Catalyst Agile Digital Certificate Technology supported
  • Hybrid key establishment schemes with classical authentication schemes:
    • TLS_ECDHE_NHDH_ECDSA_ WITH_AES_256_GCM_SHA384
    • TLS_ECDHE_NHDH_RSA_ WITH_AES_256_GCM_SHA384
    • TLS_ECDHE_SIDH_ECDSA_ WITH_AES_256_GCM_SHA384
    • TLS_ECDHE_SIDH_RSA_ WITH_AES_256_GCM_SHA384
    • TLS_ECDHE_NHDH_SIDH_ECDSA_ WITH_AES_256_GCM_SHA384
    • TLS_ECDHE_NHDH_SIDH_RSA_ WITH_AES_256_GCM_SHA384
  • Hybrid key establishment schemes with quantum-safe authentication schemes:
    • TLS_ECDHE_NHDH_DILM_ WITH_AES_256_GCM_SHA384
    • TLS_ECDHE_SIDH_DILM_ WITH_AES_256_GCM_SHA384
    • TLS_ECDHE_NHDH_SIDH_DILM_ WITH_AES_256_GCM_SHA384
  • Platforms
    • Windows (x86)
    • macOS (x86)
    • Linux (x86, ARM)
    • Android (ARM)