We’ve integrated liboqs into forks of OpenSSH and libssh to provide prototype post-quantum and hybrid key exchange in the SSH protocol. Researchers looking to try additional post-quantum algorithms can easily add more algorithms that follow the OQS API.
A pre-Internet-Draft is available describing how the SSH protocol was adapted to include the hybrid PQ key exchange algorithms.
The goal of these integrations is to provide easy prototyping of quantum-resistant cryptography and should not be considered “production quality”. Please see more about limitations of our prototype software.
The easiest way to get started with experimenting with post-quantum cryptography is to use our pre-built Docker image containing post-quantum-enabled openssh:
- Getting and running the pre-built post-quantum enabled openssh demo Docker image
- Building your own openssh demo Docker image
There also exist post-quantum-enabled docker images for TLS applications.
- snapshot 2022-01 aligned with liboqs 0.7.1 (January 6, 2022) current version
- snapshot 2021-08 aligned with liboqs 0.7.0 (August 11, 2021)
- snapshot 2020-08 aligned with liboqs 0.4.0 (September 3, 2020)
- snapshot 2020-07 aligned with liboqs 0.3.0 (July 10, 2020)
- snapshot 0219-10 aligned with liboqs 0.2.0 (October 8, 2019)
- snapshot 2020-07 aligned with liboqs 0.1.0 (November 13, 2018)
- all releases
- snapshot 2022-01 aligned with liboqs 0.7.1 (January 25, 2022) current version