Skip to content
QPKI

Standards Compliance

Standards Compliance

Section titled “Standards Compliance”

This document covers QPKI compliance with cryptographic and PKI standards.

Cryptographic Standards

Section titled “Cryptographic Standards”

FIPS 203 - ML-KEM (Key Encapsulation)

Section titled “FIPS 203 - ML-KEM (Key Encapsulation)”
ParameterSupportUsage
ML-KEM-512YesCMS EnvelopedData
ML-KEM-768YesCMS EnvelopedData (recommended)
ML-KEM-1024YesCMS EnvelopedData

FIPS 204 - ML-DSA (Signatures)

Section titled “FIPS 204 - ML-DSA (Signatures)”
ParameterSupportUsage
ML-DSA-44YesSignatures (128-bit)
ML-DSA-65YesSignatures (recommended, 192-bit)
ML-DSA-87YesSignatures (256-bit)

FIPS 205 - SLH-DSA (Stateless Hash-Based Signatures)

Section titled “FIPS 205 - SLH-DSA (Stateless Hash-Based Signatures)”
ParameterSupportUsage
SLH-DSA-SHA2-128fYesFast signing
SLH-DSA-SHA2-128sYesSmall signatures
SLH-DSA-SHA2-192fYesFast signing
SLH-DSA-SHA2-192sYesSmall signatures
SLH-DSA-SHA2-256fYesFast signing
SLH-DSA-SHA2-256sYesSmall signatures
SLH-DSA-SHAKE-*YesSHAKE variants

PKI Standards

Section titled “PKI Standards”

RFC 5280 - X.509 Certificates

Section titled “RFC 5280 - X.509 Certificates”
FeatureSupportNotes
Certificate v3YesStandard extensions
CRL v2YesDelta CRL supported
Basic ConstraintsYesCA/End-entity
Key UsageYesdigitalSignature, keyEncipherment, etc.
Extended Key UsageYesserverAuth, clientAuth, codeSigning, etc.
Subject Alt NameYesDNS, IP, Email, URI
Authority Key IdentifierYes
Subject Key IdentifierYes
CRL Distribution PointsYes
Authority Information AccessYesOCSP, CA Issuers

RFC 5652 - CMS (Cryptographic Message Syntax)

Section titled “RFC 5652 - CMS (Cryptographic Message Syntax)”
FeatureSupportNotes
SignedDataYesEC, RSA, ML-DSA, SLH-DSA
EnvelopedDataYesRSA, ECDH, ML-KEM
AuthEnvelopedDataYesAES-GCM
Multiple signersYes
Multiple recipientsYes

RFC 6960 - OCSP

Section titled “RFC 6960 - OCSP”
FeatureSupportNotes
Basic OCSPYesGET and POST
Nonce extensionYes
Signed responseYesEC, ML-DSA
Delegated responderYes

RFC 3161 - TSA (Time-Stamp Protocol)

Section titled “RFC 3161 - TSA (Time-Stamp Protocol)”
FeatureSupportNotes
TimeStampReqYes
TimeStampRespYes
AccuracyYesConfigurable
OrderingYes
NonceYes

Hybrid Algorithms

Section titled “Hybrid Algorithms”

Catalyst (ITU-T X.509 Section 9.8)

Section titled “Catalyst (ITU-T X.509 Section 9.8)”

Dual-signature certificates using standard X.509 extensions.

ExtensionOIDContent
AltSubjectPublicKeyInfo2.5.29.72Alternative public key (PQC)
AltSignatureAlgorithm2.5.29.73Algorithm of alternative signature
AltSignatureValue2.5.29.74Alternative signature value

Supported combinations:

CombinationSupport
ECDSA-P256 + ML-DSA-44Yes
ECDSA-P384 + ML-DSA-65Yes
ECDSA-P384 + ML-DSA-87Yes

Composite (IETF draft-ietf-lamps-pq-composite-sigs-13)

Section titled “Composite (IETF draft-ietf-lamps-pq-composite-sigs-13)”
CombinationSupportOID
MLDSA65-ECDSA-P256-SHA512Yes1.3.6.1.5.5.7.6.45
MLDSA65-ECDSA-P384-SHA512Yes1.3.6.1.5.5.7.6.46
MLDSA87-ECDSA-P521-SHA512Yes1.3.6.1.5.5.7.6.54

Interoperability

Section titled “Interoperability”
ValidatorVersionStatus
OpenSSL3.6+Partial (native PQC, no Composite)
BouncyCastle1.83+Partial (draft-07 for Composite)

See TESTS-INTEROP.md for test details.

See Also

Section titled “See Also”