<?xml version="1.0" encoding="UTF-8"?>
<reference anchor="I-D.ietf-hpke-pq" target="https://datatracker.ietf.org/doc/html/draft-ietf-hpke-pq-05">
   <front>
      <title>Post-Quantum and Post-Quantum/Traditional Hybrid Algorithms for HPKE</title>
      <author initials="R." surname="Barnes" fullname="Richard Barnes">
         <organization>Cisco</organization>
      </author>
      <author initials="D." surname="Connolly" fullname="Deirdre Connolly">
         <organization>Selkie Cryptography</organization>
      </author>
      <date month="July" day="6" year="2026" />
      <abstract>
	 <t>   Updating key exchange and public-key encryption protocols to resist
   attack by quantum computers is a high priority given the possibility
   of &quot;harvest now, decrypt later&quot; attacks.  Hybrid Public Key
   Encryption (HPKE) is a widely-used public key encryption scheme based
   on combining a Key Encapsulation Mechanism (KEM), a Key Derivation
   Function (KDF), and an Authenticated Encryption with Associated Data
   (AEAD) scheme.  In this document, we define KEM algorithms for HPKE
   based on both post-quantum KEMs and hybrid constructions of post-
   quantum KEMs with traditional KEMs, as well as a KDF based on SHA-3
   that is suitable for use with these KEMs.  When used with these
   algorithms, HPKE is resilient with respect to attacks by a quantum
   computer.

	 </t>
      </abstract>
   </front>
   <seriesInfo name="Internet-Draft" value="draft-ietf-hpke-pq-05" />
   
</reference>
