> <i>With NIST releasing an initial group of finalized post-quantum encryption standards, we are excited to bring these into SymCrypt, starting with ML-KEM (FIPS 203, formerly Kyber), a lattice-based key encapsulation mechanism (KEM). In the coming months, we will incorporate ML-DSA (FIPS 204, formerly Dilithium), a lattice-based digital signature scheme and SLH-DSA (FIPS 205, formerly SPHINCS+), a stateless hash-based signature scheme.</i><p>> <i>In addition to the above PQC FIPS standards, in 2020 NIST published the SP 800-208 recommendation for stateful hash-based signature schemes which are also resistant to quantum computers. As NIST themselves called out, these algorithms are not suitable for general use because their security depends on careful state management, however, they can be useful in specific contexts like firmware signing. In accordance with the above NIST recommendation we have added eXtended Merkle Signature Scheme (XMSS) to SymCrypt, and the Leighton-Micali Signature Scheme (LMS) will be added soon along with the other algorithms mentioned above.</i><p>microsoft/SymCrypt /CHANGELOG.md:
<a href="https://github.com/microsoft/SymCrypt/blob/main/CHANGELOG.md">https://github.com/microsoft/SymCrypt/blob/main/CHANGELOG.md</a><p>TIL that SymCrypt builds on Ubuntu: <a href="https://github.com/microsoft/SymCrypt/releases">https://github.com/microsoft/SymCrypt/releases</a> :<p>> <i>Generic Linux AMD64 (x86-64) and ARM64 - built and validated on Ubuntu, but because SymCrypt has very few standard library dependencies, it should work on most Linux distributions</i>