GNU project has announced the release of the library libgcrypt 1.11.0, which includes components used for encryption mechanisms in GNUPG. This library offers functions for utilizing various cryptographic algorithms in third-party applications, such as symmetrical ciphers, authenticated encryption algorithms, and encryption using public keys. Some of the supported algorithms include AES, Arcfour, RSA, SHA-*, Poly1305-*, and many more.
The new release of libgcrypt 1.11.0 is fully compatible at the API and ABI level with the 1.10.x branch, allowing for a seamless transition without the need to modify existing programs.
Key improvements in this release include:
- An API for utilizing Key Encapsulation Mechanism (KEM) for protecting keys during symmetric encryption key distribution.
- The addition of the SNTRUP761 key encapsulation algorithm, which is resistant to quantum computer attacks.
- An algorithm for encapsulation of keys using Kyber cryptography to ensure stability on quantum computers.
- The inclusion of the classic mceliece key encapsulation algorithm, designed to resist quantum attacks.
- New key formation algorithms, such as one-step KDF and HKDF, along with GMAC-SM4 and Poly1305-SM4 authenticated encryption algorithms.
- The addition of the ARIA block encryption algorithm, CSHAKE HASHING, and support for internal generation of the initialization vector (IV) for AEAD authenticated encryption mode.
- Optimized assembler sales for SM3 and SM4 algorithms on AARCH64 architecture, as well as implementations for various architectures like ARMV9, PowerPC, and X86 ASMBR.
- Enhancements to the Chachia20, Poly1305, Camellia, Ghash, Polyval, SHA512, Serpent, Sha3, BLAKE2, and other algorithms accelerated by AVX2 and AVX512 extensions.
/Reports, release notes, official announcements.