FrodoKEM-640 Security API

Version: 1.0.0
Last Updated: 2025-01-02
Security Classification: Lattice-Based KEM
Author: MetaMUI Security Team

Overview

FrodoKEM-640 is a conservative lattice-based KEM using standard LWE, providing strong security with larger keys.

• Algorithm Family: Learning With Errors (LWE)
• Security Level: NIST Level 1 (128-bit)
• Key Sizes:
  • Public Key: 9616 bytes
  • Secret Key: 19888 bytes
  • Ciphertext: 9720 bytes
• NIST Round: Round 3 alternate

Security Warnings ⚠️

1. Conservative Design: Based on standard LWE problem
2. Large Keys: Significantly larger than ML-KEM
3. No Structure: Does not use ring/module structure
4. High Bandwidth: Not suitable for constrained networks

API Functions

Standard KEM interface with LWE-based construction.

Security Analysis

Threat Model: FrodoKEM-640 Threat Model

The comprehensive threat analysis covers:

• Algorithm-specific attack vectors
• Implementation vulnerabilities
• Side-channel considerations
• Quantum resistance analysis (where applicable)
• Deployment recommendations

For complete security analysis and risk assessment, see the dedicated threat model documentation.

References

1. FrodoKEM Specification
2. Learning With Errors Problem

---

Back to Algorithm Security APIs