In June 2024, I wrote a paper entitled “Performing a mutually authenticated key exchange with perfect forward secrecy using a KEM” that I have never gotten around to publishing. I should note it has not been reviewed yet, and I’d be interested in any constructive feedback (you can get in touch on LinkedIn or Blue Sky – though I may be slow to respond, I’ve been rather busy).

Abstract:

The advent of quantum computing lends urgency to the development of secure protocols that can be built entirely with post-quantum algorithms. This excludes the use of the family of algorithms Diffie-Hellman and Elliptic Curve Diffie Hellman belong to, as there are no algorithms in that family that are likely to be selected in the NIST program for post-quantum cryptography, and previous candidates have been eliminated due to security issues. This paper presents a new protocol for a secure mutually authenticated key exchange with perfect forward secrecy, based on the use of KEM algorithms.

Read it here.