Douglas Stebila

PQ/T Hybrid Key Exchange in SSH

Abstract

This document defines Post-Quantum Traditional (PQ/T) Hybrid key exchange methods based on the quantum-resistant the Module-Lattice- Based Key-Encapsulation Mechanism (ML-KEM) standard and traditional Elliptic-curve Diffie–Hellman (ECDH) key exchange schemes. These methods are defined for use in the SSH Transport Layer Protocol.

Keywords: key exchange, Secure Shell (SSH), post-quantum cryptography

Reference

Panos Kampanakis, Douglas Stebila, Torben Hansen. PQ/T Hybrid Key Exchange in SSH. Internet-Draft. Internet Engineering Task Force, April 2025. Draft-02. © IETF Trust and the authors.

Download

BibTeX

@misc{draft-ietf-sshm-mlkem-hybrid-kex-052,
 	Author = {Panos Kampanakis and Douglas Stebila and Torben Hansen},
 	Howpublished = {\url{https://datatracker.ietf.org/doc/draft-ietf-sshm-mlkem-hybrid-kex/}},
 	Month = apr,
 	Note = {Internet-Draft},
 	Title = {{PQ/T} Hybrid Key Exchange in {SSH}},
 	Year = {2025}
 }