@hpke/hybridkem-x-wing

An example of use:

import { Aes256Gcm, CipherSuite, HkdfSha256 } from "@hpke/core";
import { XWing } from "@hpke/hybridkem-x-wing";

async function doHpke() {
  const suite = new CipherSuite({
    kem: new XWing(),
    kdf: new HkdfSha256(),
    aead: new Aes256Gcm(),
  });

  // NOTE: The following support for JWKs with the AKP key type is experimental.
  // Please be aware that the specifications are subject to change without notice.
  const jwkPub = {
    kty: "AKP",
    kid: "01",
    alg: "X-Wing",
    pub:
      "4iNrNajCSzmxCqEyOpapGaLO2IQAYzp7BxMXE_wUsrWxnPw9pfoaksSfJVE-D9MNaxYRyauWNdcIZyekt9IdNCROZpac8Vs7KnhTKfYbCWsnfqA3ODR5prVW3nIx_kt_qcmsJMBpmgAYpSU0AbrPqQXKgWVz5WotLgZ-m3KHUzuhOpN97bMfpEus7UB2mSNhADSuMeYZoXAkUZmzxcOYZIWf4bTJcXoHwwSVvfuYoKACzPVsEobO9QQd7ePETPFr9WLHRIUYAms9i5lAaAq9OKFXX9J7WNoGO_rDLDnDCGk3TAXBrrGJi2swPMaL5FU0buCvaZY2IkoUjKKuoQRjERxwn2m2nHDOhTh0ZpjExgqa7wAwx5JM7sQqXTaBb1RerhMpNGCzrLN-oOE9cOSqeGhto5ioOXwI6vloghE_5Pe61NpAsFAeHHU-_nMFPIcBToZhwzCZr-i-3kFKWxqifYOSs-Ex6acMEFWHgkDK0PQNX-PN-FI26tl-KpdEg2OygIyq_VFs0lBSxcNiVDwlF-Ss0OYOwHFjAJtkJfwyJ3rO5xwkurU-2fKedMZqCjVklVmY12uWqai1DRY1pNemfrQt9WRNMwRXKTqAQvU8x6aSiPF-1Vgn6Cso6CZlqGoU-9lmReyoFywET4O8DYwLTIYmmFYxyoevgpBo8TWJY8szNmTKSCdjujs7sghXf5umrGLCX3ZZJ0O2S-UZMXcUy0ECy3svmiWytPBhXeMd7NnKVQJtbaC2URGxb-Uv7tikh-FERiptupNyj1ALb_xJ5RVWnvJf7Rev9SBQc2glNSWGD1i-O-YclkYEpqyBTmk1WWQCpSCkZws9KEMYhmWT0VpLsBw14-WH7gxn0ogNbyQH-3pwcSuDjeuWxde_K0S89gOMy-M_vPUaVKWE_pAIPJHHptQ9T7FfSMYML9ZuCoqtStZOXEK7iHfA6-wrXjh8ipiP3CO-ueFsh1d4HgoUmcYeE4wh8hbCnQdpeYccqmlCuvwJBUS-6ZtUsWy5qaNk1iRtn0LM5TxmtZxFyPmukpmnXRUYDDyVIVGpG3oQdyQp3Ey65vzGIvqAGMY0OfiQYwuZKNtrt_lDiuQGXtNNc9SG8_UvkPCAfciN_djHKOlU8aw1wGwADOQaBYJYDju1e2cpcokKxeeYjnhQZXEW8bV9CAmq7ewL7eGuFIFIMRxvfjFzRuUYn7jNY1uYb4wL3SdkHFhLd4s6kRqAvhyWkquOG7sSg5VzzOGd8YO0WDW7tVBS-fxmoWeO8qNt6nhBHmyNYFAbTmBZLRNpipQ7UJGF25EuLqEL4GFxI2syfHFxYJTJZKaLAzd_UToFvNmcHzRlg7sFKXehChKt_HWANOVhfaTBJ2WF5XdOHzuZeLCdDpxE07yGFRxDqtGFcScXNAIjrDgdIRUKBClOl7sTu9ohtaGCttqWnhmn_QcnN_qOiApTwkKOPQSbfSGXQFKW3bNhkSp7z0gnztYR0Men2hBN3kMiCVM59kph1bsQj_C_TXgMrlCfsiwlaRQZP_c0kEJYEjfVIoKIJO4739B_sD8flC0uoXn-ci8GzAPeW2mFntsG7_OJsn3OWYRFcCFiI1k9S6MtmrrIzQSQQO9lNA",
    key_ops: [],
  };
  const pk = await suite.kem.importKey("jwk", jwkPub, true);
  // In addition to importing keys from external sources, you can also generate keys as follows:
  //   const rkp = await suite.kem.generateKeyPair();
  //   const rkp = await suite.kem.deriveKeyPair(random32bytesValue);

  const sender = await suite.createSenderContext({ recipientPublicKey: pk });

  const jwkPriv = {
    kty: "AKP",
    kid: "01",
    alg: "X-Wing",
    priv: "f5wrpOiPgn1hYEVQdgWFPtc7gJP277yI6xpurPpm7yY",
    key_ops: ["deriveBits"],
  };
  const sk = await suite.kem.importKey("jwk", jwkPriv, false);
  const recipient = await suite.createRecipientContext({
    recipientKey: sk,
    enc: sender.enc,
  });
  const encrypted = await sender.seal(
    new TextEncoder().encode("Hellow world!"),
  );
  const pt = await recipient.open(encrypted);

  // Hello world!
  console.log(new TextDecoder().decode(pt));
}

try {
  doHpke();
} catch (err: unknown) {
  console.log("failed:", (err as Error).message);
}

Index

• Installation
  • Node.js
  • Deno
  • Web Browsers
• Usage
• Contributing

Installation

@hpke/hybridkem-x-wing needs to be used with @hpke/core, which can be installed in the same manner as desribed below.

Node.js

You can install the package with npm, yarn or pnpm.

# Using npm:
npm install @hpke/hybridkem-x-wing
yarn add @hpke/hybridkem-x-wing
pnpm install @hpke/hybridkem-x-wing
# Using jsr:
npx jsr add @hpke/hybridkem-x-wing
yarn dlx jsr add @hpke/hybridkem-x-wing
pnpm dlx jsr add @@hpke/hybridkem-x-wing

The above manner can be used with other JavaScript runtimes that support npm, such as Cloudflare Workers and Bun.

Then, you can use the module from code like this:

import { Aes256Gcm, CipherSuite, HkdfSha256 } from "@hpke/core";
import { XWing } from "@hpke/hybridkem-x-wing";

Deno

For Deno, it is recommended to use the jsr.io registry.

deno add jsr:@hpke/hybridkem-x-wing

Web Browsers

Followings are how to use this module with typical CDNs. Other CDNs can be used as well.

Using esm.sh:

<!-- use a specific version -->
<script type="module">
  import {
    Aes256Gcm,
    CipherSuite,
    HkdfSha256,
  } from "https://esm.sh/@hpke/core@<SEMVER>";
  import { XWing } from "https://esm.sh/@hpke/hybridkem-x-wing@<SEMVER>";
  // ...
</script>

<!-- use the latest stable version -->
<script type="module">
  import {
    Aes256Gcm,
    CipherSuite,
    HkdfSha256,
  } from "https://esm.sh/@hpke/core";
  import { XWing } from "https://esm.sh/@hpke/hybridkem-x-wing";
  // ...
</script>

Using unpkg:

<!-- use a specific version -->
<script type="module">
  import {
    Aes256Gcm,
    CipherSuite,
    HkdfSha256,
  } from "https://unpkg.com/@hpke/core@<SEMVER>/esm/mod.js";
  import { XWing } from "https://unpkg.com/@hpke/hybridkem-x-wing@<SEMVER>/esm/mod.js";
  // ...
</script>

Usage

This section shows some typical usage examples.

Node.js

import { Aes256Gcm, CipherSuite, HkdfSha256 } from "@hpke/core";
import { XWing } from "@hpke/hybridkem-x-wing";

async function doHpke() {
  // setup
  const suite = new CipherSuite({
    kem: new XWing(),
    kdf: new HkdfSha256(),
    aead: new Aes256Gcm(),
  });

  const rkp = await suite.kem.generateKeyPair();

  // Note that the `ct` (ciphertext) resulting from X-Wing Encapsulate() is set to `sender.enc`.
  const sender = await suite.createSenderContext({
    recipientPublicKey: rkp.publicKey,
  });

  // encrypt
  const encrypted = await sender.seal(new TextEncoder().encode("Hello world!"));

  const recipient = await suite.createRecipientContext({
    recipientKey: rkp.privateKey,
    enc: sender.enc, // == `ct` (ciphertext) in the context of X-Wing
  });

  // decrypt
  const pt = await recipient.open(encrypted);

  // Hello world!
  console.log(new TextDecoder().decode(pt));
}

try {
  doHpke();
} catch (err) {
  console.log("failed:", err.message);
}

Deno

import { Aes256Gcm, CipherSuite, HkdfSha256 } from "@hpke/core";
import { XWing } from "@hpke/hybridkem-x-wing";

async function doHpke() {
  // setup
  const suite = new CipherSuite({
    kem: new XWing(),
    kdf: new HkdfSha256(),
    aead: new Aes256Gcm(),
  });

  const rkp = await suite.kem.generateKeyPair();

  // Note that the `ct` (ciphertext) resulting from X-Wing::Encapsulate() is set to `sender.enc`.
  const sender = await suite.createSenderContext({
    recipientPublicKey: rkp.publicKey,
  });

  // encrypt
  const encrypted = await sender.seal(new TextEncoder().encode("Hello world!"));

  const recipient = await suite.createRecipientContext({
    recipientKey: rkp.privateKey,
    enc: sender.enc, // == `ct` (ciphertext) in the context of X-Wing
  });

  // decrypt
  const pt = await recipient.open(encrypted);

  // Hello world!
  console.log(new TextDecoder().decode(pt));
}

try {
  doHpke();
} catch (_err: unknown) {
  console.log("failed.");
}

Web Browsers

<html>
  <head></head>
  <body>
    <script type="module">
      import {
        Aes256Gcm,
        CipherSuite,
        HkdfSha256,
      } from "https://esm.sh/@hpke/core";
      import { XWing } from "https://esm.sh/@hpke/hybridkem-x-wing";

      globalThis.doHpke = async () => {
        try {
          const suite = new CipherSuite({
            kem: new XWing(),
            kdf: new HkdfSha256(),
            aead: new Aes256Gcm(),
          });

          const rkp = await suite.kem.generateKeyPair();

          // Note that the `ct` resulting from X-Wing::Encapsulate() is set to `sender.enc`.
          const sender = await suite.createSenderContext({
            recipientPublicKey: rkp.publicKey,
          });
          // encrypt
          const encrypted = await sender.seal(
            new TextEncoder().encode("Hello world!"),
          );

          const recipient = await suite.createRecipientContext({
            recipientKey: rkp.privateKey, // rkp (CryptoKeyPair) is also acceptable.
            enc: sender.enc, // == `ct` (ciphertext) in the context of X-Wing
          });

          // decrypt
          const pt = await recipient.open(encrypted);

          // Hello world!
          alert(new TextDecoder().decode(pt));
        } catch (err) {
          alert("failed:", err.message);
        }
      };
    </script>
    <button type="button" onclick="doHpke()">do HPKE</button>
  </body>
</html>

Contributing

We welcome all kind of contributions, filing issues, suggesting new features or sending PRs.

Changes

Version 1.6.1

Released 2024-11-05

• (#458) Update internal dependencies.

Version 1.6.0

Released 2024-11-04

• (#445) Update dependabot.yml to check npm/package-lock.json.
• (#444) Implement X-Wing experimentally.
• (#443) Add test for serialize/deserializePrivateKey.
• (#441) Add */test/runtimes/cloudflare to npm workspaces.
• (#440) Add vscode setting.
• (#439) Refine deno task sample:node.
• (#438) Add samples to npm workspaces.
• (#437) Add @group Error for docs.
• (#437) Remove BaseError.
• (#436) Change main docs from hpke-js to @hpke/core.
• (#435) Remove deno.land from docs.
• (#433) Implement DhkemX4489HkdfSha512 on @hpke/core.
• (#432) Disclose base64UrlToBytes on @hpke/common.
• (#431) Implement DhkemX25519HkdfSha256 on @hpke/core.
• Update devDependencies:
  • (#446) Bump @noble/ciphers to 1.0.0.
  • (#446) Bump @noble/hashes to 1.5.0.
  • (#446) Bump @noble/curves to 1.6.0.

Version 1.5.0

Released 2024-10-12

• (#427) Introduce isDeno utility instead of isNode.
• (#425) Use codecove only to Deno v2.
• (#424) Add isDenoV1 for testing.
• (#423) Fix deno task test:* for Deno v2.
• (#422) Bump base deno version to v2.0.0.

Version 1.4.3

Released 2024-10-07

• (#417) Use @hpke/common for HkdfSha384.
• (#416) Remove duplicated isNode.
• (#415) Fix import-map path.
• (#414) Add deno task sample:deno.
• (#413) Add deno task sample:node.

Version 1.4.2

Released 2024-10-06

• (#412) Refine publish workflow for npm packages.
• (#412) Add @hpke modules to import_map for dnt.
• (#412) Use npm/import_map for dnt.

Version 1.4.1

Reverted to 1.3.1 2024-10-06

Version 1.4.0

Released 2024-10-06

• (#409) Refine publish workflow.
• (#407) Refine deno task test:all.
• (#406) Merge test utils to @hpke/common.
• (#405) Update bun test.
• (#403) Add deno task update.
• (#401) Refine import_map.
• (#400) Introduce @hpke/common as an internal-use module.
• (#399) Add testPattern.
• (#398) Apply npm audit fix.
• (#388) Separate the import-map for Dnt from the top-level import-map.
• (#386) Add deno task test:cloudflare.
• (#385) Refine dependencies.
• (#384) Add getPath.
• (#383) Rename npm-packages/x to npm/packages.
• (#382) Rename x to packages.
• (#381) Update samples for node.
• Update devDependencies:
  • (#397) Bump vite to 5.4.8.
  • (#395) Bump rollup to 4.22.4.

Version 1.3.1

Released 2024-09-01

• (#379) Fix link to doc from deno.land to jsr.io.
• (#378) Use npx jsr publish.
• (#377) Add needs for npm publish.
• (#376) Use bun link.
• (#375) Refine dependencies for bun test.
• (#374) Fix use of npm link.
• (#373) Add package-lock.json.
• (#372) Remove node_modules before dnt.
• (#371) Use npm link on cloudflare CI.
• (#370) Refine dependencies for cloudflare test.
• (#369) Add deno task npm-pack.
• (#368) Add deno task npm-link and npm.
• (#367) Remove scripts/.
• (#366) Add samples for Node.
• (#365) Set noEmit true for tsconfig.json.
• (#364) Refine dependencies on import-map for npm.
• (#363) Move samples to x/.
• (#362) Update Node sample of hpke-js.
• (#360) Add Deno sample using JSR.
• Update devDependencies:
  • (#361) Bump @deno/dnt to 0.41.3.
  • (#361) Bump @std/assert to 1.0.3.

Version 1.3.0

Released 2024-08-31

• (#358) Move (deprecated)Kem, Kdf and Aead from core to hpke-js.
• (#355) Add support for Node 22.
• (#345) Disclose common functions on @hpke/core for hpke-js extensions.
• (#314, etc.) Add support for deno workspace and JSR registry.
• Update devDependencies:
  • (#351) Bump webpack to 5.94.0.

Version 1.2.9

Released 2024-08-05

• Update devDependencies:
  • (#311) Bump dnt to 0.41.2.

Version 1.2.8

Released 2024-08-04

• (#307) Add config to deno test on test/runtimes/cloudflare.
• (#305) Fix ekm byte length typo in Hybrid KEM.
• (#303) Fix linter/formatter error on samples/ts-webpack.
• (#301) Add webpack sample.
• Update dependencies:
  • (#308) Bump @noble/curves to 1.4.2.
  • (#308) Bump @noble/hashes to 1.4.0.
  • (#308) Bump @noble/ciphers to 0.5.3.
• Update devDependencies:
  • (#308) Bump ts-webpack dependencies.
  • (#308) Bump @playwright/test to 1.45.3.
  • (#308) Bump wrangler to 3.68.0.
  • (#308) Bump dnt to 0.40.0.
  • (#308) Bump std to 0.224.0.

Version 1.2.7

Released 2024-01-28

• Update dependencies:
  • (#299) Bump @noble/curves to 1.3.0.

Version 1.2.6

Released 2024-01-28

• (#294) Add support for importKey for P-521 public key on Deno.
• (#293) Fix test to follow Deno update.
• (#293) Add noEmit to tsconfig.json.
• Update dependencies:
  • (#296) Bump @noble/hashes to 1.3.3.
  • (#296) Bump @noble/ciphers to 0.4.1.
• Update devDependencies:
  • (#295) Bump dnt to 0.39.0 (for core/ and x/).
  • (#295) Bump playwright/test to 1.41.1.
  • (#295) Bump Wrangler to 3.19.0.
  • (#295) Bump deno.land/std to 0.213.0.

Version 1.2.5

Released 2023-11-26

• (#291) Make dnt emit type declaration inline.
• Update workflows:
  • (#289) Loosen bun versions on CI.
  • (#289) Add Node 21 to CI.
  • (#289) Bump actions/checkout to v4.
  • (#289) Bump actions/setup-node to v4.
• Update devDependencies:
  • (#291) Bump deno.land/std to 0.208.0.
  • (#291) Bump deno.land/x/dnt to 0.39.0.

Version 1.2.4

Released 2023-11-05

• (#288) Unlock the version of Deno on CI for cloudflare workers and bun.
• (#288) Bump @noble/ciphers to 0.4.0.
• (#285) Add test for bidirectional encryption.

Version 1.2.3

Released 2023-09-09

• (#282) Update devDependencies.
• (#281) Bump @noble/ciphers to 0.3.0.
• (#280) Bump @noble/curves to 1.2.0.
• (#279) Bump @noble/hashes to 1.3.2.
• (#279) Sync kyber implementation to crystals-kyber-js.
• (#275) Add BaseError/KyberError.

Version 1.2.2

Released 2023-08-20

• (#273) Add docstring for tsdoc.
• (#272) Refactor kyber.
• (#271) Introduce constantTimeCompare to kyber.
• (#270) Update loadSubtleCrypto/loadCrypto.

Version 1.2.1

Released 2023-08-19

• (#264) Refine READMEs.
• (#263) Add support for the hybrid post-quantum KEM (X25519Kyber768Draft00) experimentally.

Version 1.2.0

Released 2023-08-16

• (#261) BREAKING CHANGE on hpke/core: Drop KemId/KdfId/AeadId support from CipherSuiteNative.

Version 1.1.1

Released 2023-08-15

• (#259) Remove imports with asterisk.
• (#258) Add sideEffects:false to dnt.ts.

Version 1.1.0

Released 2023-08-15

• (#256) Remove unused utilities.
• (#251) Refactor KEM implementation.
• (#251) Add NativeAlgorithm as base class for cryptographic algorithms using Web Cryptography API.
• (#251) Add KemId.NotAssigned.
• (#250) Use deno-fmt-ignore for const byte string.
• (#249) Add serialize/deserializePrivatekey to KemInterface.

Version 1.0.4

Released 2023-08-11

• (#246) Remove api parameter from KdfInterface.init().
• (#245) Remove init() from AeadInterface.
• (#244) Remove init() from KemInterface.
• (#240) Refactor DhkemSecp256k1HkdfSha256.
• (#239) Bump noble/ciphers to 0.2.0.

Version 1.0.3

Released 2023-08-07

• (#237) Separate consts to minimize the size of submodules.
• (#236) Update dnt config.
• (#235) Fix unnecessary disclosure for AesGcm classes.
• (#232) Remove tsdoc remarks.

Version 1.0.2

Released 2023-08-06

• (#230) Simplify and expose HpkeError.
• (#229) Rename *ContextInterface to *Context.
• (#227) Refine tsdoc description.

Version 1.0.1

Released 2023-08-06

• (#226) Remove unnecessary ciphersuite classes.
• (#225) Deploy tsdoc-based document to pages.

Version 1.0.0

Released 2023-08-05

• (#222) Increase the input limits from 128 bytes to 8192 bytes. by @snorp
• (#220) Add hpke/chacha20poly1305.
• (#219) Add hpke/dhkem-x448.
• (#218) Update dhkem-secp256k1 test to use hpke/core.
• (#217) Add hpke/dhkem-x25519.
• (#216) Add hpke/core.
• (#215) Expose CipherSuiteNative class for hpke-js.
• (#214) BREAKING CHANGES for 1.0.0.
  • Change CipherSuite.kem/kdf/aead to CipherSuite.kem.id/kdf.id/aead.id.
  • Remove KemId.DhkemSecp256"K"1HkdfSha256.
  • Remove CipherSuite.kemContext(). (Use CipherSuite.kem)
  • Remove CipherSuite.kdfContext(). (Use CipherSuite.kdf)
  • Remove createAeadKey from CipherSuite. (Use CipherSuite.aead.createEncryptionContext())
  • Rename AeadKey to AeadEncryptionContext.
  • Simplify AeadEncryptionContext interface.
  • Drop support for bi-drectional encryption.
• (#213) Update x/dhkem-secp256k1/deno.json.
• (#212) Separate the HKDF classes dependent on external modules from the independent base class.
• (#211) Separate dhkemPrimitives from dhkem classes.

Version 0.22.2

Released 2023-07-28

• (#208) Fix encSize and publicKeySize of DhkemSecp256k1HkdfSha256.

Version 0.22.1

Released 2023-07-28

• (#206) Change scoped package name.

Version 0.22.0

Released 2023-07-27

• (#199) Add common server for testing.
• (#196) BREAKING: Separate dhkemSecp256k1HkdfSha256 from core module.
• Update dev dependencies:
  • (#201) Bump undici to 5.22.1.

Version 0.21.0

Released 2023-07-25

• (#194) Expose AEAD Classes for CipherSuiteParams.
• (#193) Add AeadInterface for CipherSuiteParams.
• (#192) Add mod.ts to formatter/linter targets.
• (#191) Update CipherSuiteParameters to make Kem/KdfInterface to be set instead of Kem/KdfId.
• (#190) Introduce union type algorithm identifier.
• (#189) Add support for Node.js 20.

Version 0.20.0

Released 2023-07-19

• (#187) Use noble/curves/secp256k1 instead of noble/secp256k1.
• (#186) Update deno.json not to use 'files'.
• (#185) Refactor KEM/KDF/AEAD constructor.

Version 0.19.0

Released 2023-07-17

• (#183) Add support for importKey('jwk').
• (#181) Adopt noble-ciphers insterad of standardlib for ChaCha20/Poly1305.
• (#178) Merge import-map into deno.json.
• Update dev dependencies:
  • (#180) Bump @playwright/test to 1.36.1.

Version 0.18.5

Released 2023-06-13

• (#172) Add deno.lock.
• (#170) Drop support for nest.land.
• Update dev dependencies:
  • (#171) Bump deno/std to 0.191.0.
  • (#171) Bump deno/dnt to 0.37.0.

Version 0.18.4

Released 2023-06-13

• (#165) Use audited version of noble/curves.
• (#163) Fix a typo in the CipherSuite.ts.
• Update dev dependencies:
  • (#162) Bump @playwright/test to 1.35.0.

Version 0.18.3

Released 2023-04-08

• (#155) Fix TypeScript compile error.
• (#148) Add SECURITY.md.
• Update dev dependencies:
  • (#154) Bump @playwright/test to 1.32.2.
  • (#148) Bump wrangler to 2.10.0.
  • (#146) Bump http-cache-semantics to 4.1.1.

Version 0.18.2

Released 2023-01-17

• (#143) Do not use import-map for npm module.

Version 0.18.1

Released 2023-01-17

• (#141) Allow to use over hash size length key for SHA384.
• (#140) Use noble/hashes for HDKF fallback process.

Version 0.18.0

Released 2023-01-16

• (#138) Use noble/curves for x25519/x448.

Version 0.17.2

Released 2023-01-16

• (#136) Use audited secp256k1 lib.
• (#135) Refine the table of supported runtimes.
• (#134) Add support for bun.
• (#132) Activate DHKEM P-384 test for Deno.
• (#130) Add npm package to import-map.json.
• (#125) Add dependabot.yml.
• Update dev dependencies:
  • (#131) Bump wrangler to 2.7.1.
  • (#126) Bump @playwright/test to 1.29.2.

Version 0.17.1

Released 2023-01-05

• (#123) Add secp256k1 test for Cloudflare Workers.
• (#122) Fix error on release process for egg.

Version 0.17.0

Released 2023-01-05

• (#121) Bump deno/std to 0.170.0.
• (#120) Add support for DHKEM(secp256k1, HKDF-SHA256) experimentally.

Version 0.16.0

Released 2023-01-04

• (#118) Refine KDF Interface.
• (#117) Refine KDF Interface.
• (#116) Refine KEM Interface.
• (#112) Remove bundles.
• (#107) Add Node.js v19 to CI.
• (#106) Fix import path to deno.land on README.

Version 0.15.0

Released 2022-11-06

• (#103) Disclose KEM attributes.

Version 0.14.0

Released 2022-10-28

• (#101) Expose suite-specific KDF and AEAD interface.
• (#98) Replace deno test jobs with parallel.
• (#94) Add edge and chrome to playwright test projects.
• (#93) Add cov to deno tasks.
• (#92) Introduce import-map.
• (#91) Refine deno.json.
• (#90) Add the minimum supported versions to README.

Version 0.13.0

Released 2022-07-01

• (#88) Add support for Cloudflare Workers.

Version 0.12.1

Released 2022-07-01

• (#86) Ship hpke.min.js.

Version 0.12.0

Released 2022-06-26

• (#84) BREAKING: Use git tags for versioning.
• (#83) Ship to nest.land.
• (#82) Add fmt and lint to deno tasks.

Version 0.11.5

Released 2022-06-18

• (#76) Add DHKEM(P-256, HKDF-SHA256) to Deno supported KEMs.

Version 0.11.4

Released 2022-06-11

• (#76) Add playwright test.
• (#75) Refine dnt.ts.
• (#74) Add Github pages for test.

Version 0.11.3

Released 2022-06-09

• (#72) Add test for browsers.
• (#71) Refine samples

Version 0.11.2

Released 2022-06-07

• (#68) Add test.
• (#67) Refine deno.json.

Version 0.11.1

Released 2022-06-06

• (#63) Add coverage setting.
• Remove @link from jsdoc string.
• Refine jsdoc string.

Version 0.11.0

Released 2022-06-06

• (#61) Drop typedoc support.
• (#60) BREAKING: Drop hpke.min.js and hpke.js support.

Version 0.10.2

Released 2022-06-05

• (#58) Fix bug on publish.yml.

Version 0.10.1

Released 2022-06-05

• (#57) Fix bug on publish.yml.

Version 0.10.0

Released 2022-06-05

• (#55) Add support for Deno.

Version 0.9.1

Released 2022-05-29

• (#53) Remove 'deriveKey' from key usages.
• (#53) Flush internal buffer for secrets.
• (#52) Add supported environments to README.

Version 0.9.0

Released 2022-05-28

• (#50) Add support for DHKEM(X448, HKDF-SHA512).
• (#49) Optimize suite_id generation.

Version 0.8.0

Released 2022-05-24

• (#47) Refine typedoc description.
• (#47) BREAKING: Add minimum length check for PSK.
• (#46) Add importKey to CipherSuite.
• (#45) BREAKING: Add input length validation.

Version 0.7.1

Released 2022-05-22

• (#42) Reject all-zero shared secret derived with X25519.
• (#42) Add tests for key validation.

Version 0.7.0

Released 2022-05-21

• (#40) Add support for DHKEM(X25519, HKDF-SHA256).

Version 0.6.0

Released 2022-05-21

• (#38) Add support for ChaCha20/Poly1305.
• (#37) BREAKING: Remove redundant output from dist.

Version 0.5.1

Released 2022-05-16

• (#32) Release typedoc API document.

Version 0.5.0

Released 2022-05-15

• (#30) Add support for deriveKeyPair.
• (#30) BREAKING: Remove deriveKey.
• (#29) Fix upper limit check for sequence number of encryption.
• (#28) Improve test coverage.
• (#25) Add SerializeError.
• (#25) Enable lint test on github action.
• (#25) Introduce KemPrimitives to make it easy to add KEM algorithms.
• (#24) Introduce AeadKey interface to make it easy to add new AEAD algorithms.

Version 0.4.1

Released 2022-05-12

• (#22) Refine dist structure.

Version 0.4.0

Released 2022-05-10

• (#20) Add samples to README.
• (#19) Fix bug on browser environment.
• (#18) Change the default test environment from jsdom to node.
• (#16) Add support for bidirectional environment.

Version 0.3.1

Released 2022-05-08

• (#14) Add support for deriveKey.
• (#14) Fix bug on extract.

Version 0.3.0

Released 2022-05-08

• (#11) Add support for single-shot apis.

Version 0.2.4

Released 2022-05-07

• (#9) Allow to use privateKey as senderKey and recipientKey parameter.
• Fix bug on #7.

Version 0.2.3

Released 2022-05-07

• (#7) Add *.{ts, d.ts, d.ts.map} to npm package.

Version 0.2.2

Released 2022-05-06

• Fix bug on using Web Crypto API on Node.js environment.

Version 0.2.1

Released 2022-05-06

• Add support for Node.js environment.

Version 0.2.0

Released 2022-05-06

• First public preview release.