Info
Hi all,
I've released the first version of krypteia, a pure-Rust cryptographic workspace covering both post-quantum and classical primitives, with zero external dependencies (std/core/alloc only) and an embedded-first design (Cortex-M0/M4/M33, RISC-V / ESP32-C3, no_std). It's written to be constant-time from the first commit, and its side-channel posture is documented per primitive.
Four crates on crates.io:
(They publish under the krypteia-* namespace but keep their bare import paths via [lib] name, so it's use quantica::…, use arcana::….)
What's validated:
On method, transparently: part of this is AI-assisted, tracked openly via Co-Authored-By trailers in git — deliberately, as an experiment in whether an LLM can help produce rigorous low-level crypto rather than the plausible-but-unverified kind. The guard rail is that the model is never the source of trust: correctness and constant-timeness are decided by tools (ACVP/Wycheproof, ctgrind, dudect), not by the model. The tool is the auditor; the model is the operator.
What it does not claim: no third-party audit yet, API not semver-stable, not production-ready. It's structured toward a lab-class evaluation, but that pass hasn't happened. Don't deploy it where you need an audited library — but critical feedback, especially on the side-channel work, is very welcome.
Thanks for reading.
1 post - 1 participant
🏷️ Rust_feed