About the Project
This project provides a visualization and exploration of NIST's post-quantum cryptography standards, powered by the pqc JavaScript library. The library implements all three quantum-resistant algorithms standardized by NIST in their Federal Information Processing Standards (FIPS).
This application was developed as a major project for my BTech Computer Science degree at Vasireddy Venkatadri Institute of Technology, India. It aims to help developers understand and visualize post-quantum cryptographic algorithms to prepare for the quantum computing era.
Implemented Algorithms
ML-KEM
Module-Lattice-based Key Encapsulation Mechanism (FIPS 203)
ML-DSA
Module-Lattice-based Digital Signature Algorithm (FIPS 204)
SLH-DSA
Stateless Hash-based Digital Signature Algorithm (FIPS 205)
Author
Nithin Ram Kalava
Dept. Computer Science, Vasireddy Venkatadri Institute of Technology, India
This project was developed as part of my BTech Computer Science degree. The implementation and research aim to make post-quantum cryptography more accessible to web developers through JavaScript implementation.
Research Paper
Post-Quantum Security for Web Applications
Abstract
The emergence of quantum computing presents an unprecedented threat to current cryptographic systems. With sufficient quantum computing capabilities, Shor's algorithm will efficiently break widely used public-key cryptography like Rivest-Shamir-Adleman (RSA) and Elliptic Curve Cryptography (ECC). To counter this threat, the National Institute of Standards and Technology (NIST) has standardized three quantum-resistant algorithms in their Federal Information Processing Standards (FIPS): Module-Lattice-based Key Encapsulation Mechanism (ML-KEM) for key encapsulation, Module-Lattice-based Digital Signature Algorithm (ML-DSA) for digital signatures, and Stateless Hash-based Digital Signature Algorithm (SLH-DSA) for hash-based signatures. This paper presents 'pqc', a JavaScript implementation of these standards available as a Node Package Manager (npm) package. Our implementation achieves practical performance on modern hardware, with ML-KEM-768 performing 2,305 operations per second for key generation and ML-DSA65 achieving 386 operations per second for signing operations. The library enables developers to integrate post-quantum cryptography into web applications, helping prepare current systems for the quantum computing era.
Key Benchmarks
ML-KEM Performance
| Operation | ML-KEM-512 | ML-KEM-768 | ML-KEM-1024 |
|---|---|---|---|
| keygen | 3,784 op/s | 2,305 op/s | 1,510 op/s |
| encrypt | 3,283 op/s | 1,993 op/s | 1,366 op/s |
| decrypt | 3,450 op/s | 2,035 op/s | 1,343 op/s |
ML-DSA Performance
| Operation | ML-DSA44 | ML-DSA65 | ML-DSA87 |
|---|---|---|---|
| keygen | 669 op/s | 386 op/s | 236 op/s |
| sign | 123 op/s | 120 op/s | 78 op/s |
| verify | 618 op/s | 367 op/s | 220 op/s |
Implementation Highlights
Quantum Resistance
Implements algorithms specifically designed to resist attacks from quantum computers, including Shor's algorithm which threatens current cryptographic standards.
Performance Optimized
Achieves practical performance for web applications, with thousands of operations per second for key generation and hundreds for signing operations.
Pure JavaScript Implementation
Implemented entirely in JavaScript to ensure wide compatibility across web browsers and Node.js environments without requiring native code extensions.
NIST FIPS Compliant
Strictly adheres to the NIST Federal Information Processing Standards (FIPS) 203, 204, and 205, ensuring compatibility with regulatory requirements.
Research Paper
Post-Quantum Security for Web Applications
Nithin Ram Kalava, Dept. Computer Science, Vasireddy Venkatadri Institute of Technology
Download Full PaperKey Findings
Practical Performance
ML-KEM-768 achieves 2,305 operations per second for key generation, making it viable for real-time web applications.
FIPS Standards Implementation
Successfully implemented the three NIST standardized algorithms (ML-KEM, ML-DSA, SLH-DSA) in JavaScript.
Algorithm Tradeoffs
Different security levels and implementation variants offer tradeoffs between performance, key size, and security level.
Contact & Resources
Contact Information
Feel free to reach out with questions about the library implementation, suggestions for improvement, or to discuss post-quantum cryptography applications for your project.