Kyber is a key encapsulation mechanism (KEM) designed to be resistant to cryptanalytic attacks with future powerful quantum computers.
[11] Internal hashing operations account for the majority of the runtime, which would thus potentially benefit greatly from corresponding hardware acceleration.
[12] They also developed the related and complementary signature scheme Dilithium, as another component of their "Cryptographic Suite for Algebraic Lattices" (CRYSTALS).
[4] According to a footnote the report announcing the decision, it is conditional on the execution of various patent-related agreements, with NTRU being a fallback option.
In the second phase of the selection process, several parameters of the algorithm were adjusted and the compression of the public keys was dropped.
In particular, in the submission for round 2 (so called Kyber v2), the following features were changed:[13] Submission to round 3 underwent further tweaks:[14] The developers have released a reference implementation into the public domain (or under CC0), which is written in C.[15] The program library liboqs of the Open Quantum Safe (OQS) project contains an implementation based[16] on that.