Applying KEMs Using the Bouncy Castle APIs (S31c)
Among the many developments in the journey to quantum safety, the differences in how Key Encapsulation Algorithms (KEMs) behave compared to traditional Key Agreement and Key Transport protocols are some of the most profound. Not only have these differences led to changes in protocols from TLS to certificate management, but they have also resulted in the introduction of new APIs in Java 21.
This talk will examine how KEM algorithms are presented and used in the upcoming update to the Bouncy Castle FIPS APIs, including support for the new Java Cryptography Extension (JCE) API in Java 21. It will also cover how to manage KEM usage in Bouncy Castle’s auxiliary APIs for CMS/SMIME, TLS, and certificate management.