mldsa-native v1.0.0-alpha

mldsa-native is a C90 library that allows developers to support the ML-DSA / FIPS 204 post-quantum cryptography standard with minimal performance and maintenance cost.

Why mldsa-native?

Minimal Dependencies: mldsa-native is written in portable C90 with minimal and configurable dependencies on the standard library.

Maintainability and Safety: Memory safety, type safety and absence of various classes of timing leakage are automatically checked on every change, using a combination of static model checking (using CBMC) and dynamic instrumentation (using valgrind). This reduces review and maintenance burden and accelerates safe code delivery.

Architecture Support: Native backends are added under a unified interface, minimizing duplicated code and reasoning. mldsa-native comes with backends for AArch64 and x86-64.

Governance: mldsa-native is supported by the Linux Foundation and Post-Quantum Cryptography Alliance.

See the README for more details.

Status

This is a production ready alpha release. External APIs are expected but not guaranteed to be stable. Feedback welcome! If you have any questions, please reach out to us or open an issue on https://github.com/pq-code-package/mldsa-native.

Development plan

• Assurance: Prove functional correctness of x86_64 and AArch64 assembly backends using HOL-Light and s2n-bignum verification infrastructure.

• Performance: Super-optimize AArch64 backend using SLOTHY; further improve performance of x86_64 backend.

• Maintainability: Improve requirements traceability by documenting relation between source and FIPS 204 standard.