ML-KEM-1024 Security API
Version: 1.0.0
Last Updated: 2025-01-02
Security Classification: Maximum Security KEM
Author: MetaMUI Security Team
Overview
ML-KEM-1024 is a NIST-standardized post-quantum KEM providing NIST security level 5 (256-bit classical security), the highest security level in the ML-KEM family.
- Algorithm Family: Lattice-based KEM
- NIST Security Level: Level 5 (≥256-bit classical security)
- Key Sizes:
- Public Key: 1568 bytes
- Secret Key: 3168 bytes
- Ciphertext: 1568 bytes
- Shared Secret: 32 bytes
- Standard: FIPS 203
Security Warnings ⚠️
- Maximum Security: Suitable for long-term secrets and high-value targets
- Performance Trade-off: Slower than ML-KEM-512/768 due to larger parameters
- Memory Requirements: Requires more memory for key storage
- Quantum Resistance: Highest level of post-quantum security
API Functions
Key Generation
def ml_kem_1024_keygen() -> Tuple[PublicKey, SecretKey]:
"""Generate ML-KEM-1024 keypair with maximum security parameters"""
Encapsulation
def ml_kem_1024_encaps(public_key: PublicKey) -> Tuple[Ciphertext, SharedSecret]:
"""Encapsulate with level 5 security"""
Decapsulation
def ml_kem_1024_decaps(ciphertext: Ciphertext, secret_key: SecretKey) -> SharedSecret:
"""Decapsulate with implicit rejection"""
Security Best Practices
- Use for long-term secrets (>30 years)
- Suitable for national security applications
- Consider hybrid with P-521 ECDH for maximum classical security
- Implement with hardware security modules when possible
Security Analysis
Threat Model: ML-KEM-1024 Threat Model
The comprehensive threat analysis covers:
- Algorithm-specific attack vectors
- Implementation vulnerabilities
- Side-channel considerations
- Quantum resistance analysis (where applicable)
- Deployment recommendations
For complete security analysis and risk assessment, see the dedicated threat model documentation.