Post-quantum Multi-Key Mechanisms for PKIX-like protocols; Problem Statement and Overview of Solution Space

Document Type Expired Internet-Draft (individual)
Author Mike Ounsworth 
Last updated 2020-03-20 (latest revision 2019-09-17)
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


With the widespread adoption of post-quantum (PQ) cryptography will come uncertainty about the strength of cryptographic primitives. For example; when will RSA and ECC fall? Are Lattice schemes as strong as we believe? The cryptographic community is calling for hybrid schemes that combine classic and post-quantum crypto in ways that remain strong so long as at least one of the algorithms used remains strong. This document defines the problem statement for digital signatures in PKIX-like protocols, and gives an overview of the general families of solutions.


Mike Ounsworth (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)