Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Projects Cryptographic Algorithm Validation Program

Cryptographic Algorithm Validation Program CAVP

Implementation Name
wolfCrypt Post Quantum
Description
This is the CNSA 2.0 compatible algorithm library contained within the wolfSSL SSL/TLS library bundle.
Version
v7.0.0
Type
SOFTWARE
Vendor
wolfSSL Inc.
10016 Edmonds Way
Suite C-300
Edmonds, WA 98020
USA
Contacts
Kaleb Himes
[email protected]
406-381-9556
FIPS Support
[email protected]
425-245-8247

A8437

   First Validated: 5/29/2026
Operating Environment Algorithm Capabilities
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
Hash DRBG
  • Prediction Resistance: Yes, No
  • Supports Reseed
    • Capabilities:
      • Mode: SHA2-512
      • Entropy Input: 256
      • Nonce: 128
      • Personalization String Length: 0, 256
      • Additional Input: 0, 256
      • Returned Bits: 2048
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA-1
  • MAC: 160
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA2-224
  • MAC: 224
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA2-256
  • MAC: 256
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA2-384
  • MAC: 384
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA2-512
  • MAC: 512
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA2-512/224
  • MAC: 224
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA2-512/256
  • MAC: 256
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA3-224
  • MAC: 224
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA3-256
  • MAC: 256
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA3-384
  • MAC: 384
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
HMAC-SHA3-512
  • MAC: 512
  • Key Length: 40-2048 Increment 8
  • Message Length: 0-4096 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
LMS SigVer
  • Capabilities:
    • LMS Modes: LMS_SHA256_M24_H10, LMS_SHA256_M24_H15, LMS_SHA256_M24_H20, LMS_SHA256_M24_H25, LMS_SHA256_M24_H5, LMS_SHA256_M32_H10, LMS_SHA256_M32_H15, LMS_SHA256_M32_H20, LMS_SHA256_M32_H25, LMS_SHA256_M32_H5, LMS_SHAKE_M24_H10, LMS_SHAKE_M24_H15, LMS_SHAKE_M24_H20, LMS_SHAKE_M24_H25, LMS_SHAKE_M24_H5, LMS_SHAKE_M32_H10, LMS_SHAKE_M32_H15, LMS_SHAKE_M32_H20, LMS_SHAKE_M32_H25, LMS_SHAKE_M32_H5
    • LMOTS Modes: LMOTS_SHA256_N24_W1, LMOTS_SHA256_N24_W2, LMOTS_SHA256_N24_W4, LMOTS_SHA256_N24_W8, LMOTS_SHA256_N32_W1, LMOTS_SHA256_N32_W2, LMOTS_SHA256_N32_W4, LMOTS_SHA256_N32_W8, LMOTS_SHAKE_N24_W1, LMOTS_SHAKE_N24_W2, LMOTS_SHAKE_N24_W4, LMOTS_SHAKE_N24_W8, LMOTS_SHAKE_N32_W1, LMOTS_SHAKE_N32_W2, LMOTS_SHAKE_N32_W4, LMOTS_SHAKE_N32_W8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
ML-DSA KeyGen
  • Parameter Sets: ML-DSA-44, ML-DSA-65, ML-DSA-87
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
ML-DSA SigGen
  • Signature Interfaces: external, internal
  • Pre Hash: preHash, pure
  • Deterministic: Yes, No
  • External Mu: Yes, No
    • Capabilities:
      • Parameter Sets: ML-DSA-44
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-256, SHA2-384, SHA2-512, SHA2-512/256, SHA3-256, SHA3-384, SHA3-512, SHAKE-128, SHAKE-256
      • Context Length: 0-2040 Increment 8
    • Capabilities:
      • Parameter Sets: ML-DSA-65
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-384, SHA2-512, SHA3-384, SHA3-512, SHAKE-256
      • Context Length: 0-2040 Increment 8
    • Capabilities:
      • Parameter Sets: ML-DSA-87
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-512, SHA3-512, SHAKE-256
      • Context Length: 0-2040 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
ML-DSA SigVer
  • Signature Interfaces: external, internal
  • Pre Hash: preHash, pure
  • External Mu: Yes, No
    • Capabilities:
      • Parameter Sets: ML-DSA-44
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-256, SHA2-384, SHA2-512, SHA2-512/256, SHA3-256, SHA3-384, SHA3-512, SHAKE-128, SHAKE-256
      • Context Length: 0-2040 Increment 8
    • Capabilities:
      • Parameter Sets: ML-DSA-65
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-384, SHA2-512, SHA3-384, SHA3-512, SHAKE-256
      • Context Length: 0-2040 Increment 8
    • Capabilities:
      • Parameter Sets: ML-DSA-87
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-512, SHA3-512, SHAKE-256
      • Context Length: 0-2040 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
ML-KEM EncapDecap
  • Parameter Sets: ML-KEM-1024, ML-KEM-512, ML-KEM-768
  • Functions: Decapsulation, Decapsulation Key Check, Encapsulation, Encapsulation Key Check
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
ML-KEM KeyGen
  • Parameter Sets: ML-KEM-1024, ML-KEM-512, ML-KEM-768
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA-1
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA2-224
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA2-256
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA2-384
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA2-512
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA2-512/224
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA2-512/256
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA3-224
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA3-256
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA3-384
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHA3-512
  • Message Length: 0-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHAKE-128 (FIPS 202)
  • Message Length: 0-65536 Increment 8
  • Output Length: 16-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SHAKE-256 (FIPS 202)
  • Message Length: 0-65536 Increment 8
  • Output Length: 16-65536 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SLH-DSA KeyGen
  • Parameter Sets: SLH-DSA-SHA2-128f, SLH-DSA-SHA2-128s, SLH-DSA-SHA2-192f, SLH-DSA-SHA2-192s, SLH-DSA-SHA2-256f, SLH-DSA-SHA2-256s, SLH-DSA-SHAKE-128f, SLH-DSA-SHAKE-128s, SLH-DSA-SHAKE-192f, SLH-DSA-SHAKE-192s, SLH-DSA-SHAKE-256f, SLH-DSA-SHAKE-256s
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SLH-DSA SigGen
  • Deterministic: Yes, No
  • Signature Interfaces: external, internal
  • Pre Hash: preHash, pure
    • Capabilities:
      • Parameter Sets: SLH-DSA-SHA2-128f, SLH-DSA-SHA2-128s, SLH-DSA-SHAKE-128f, SLH-DSA-SHAKE-128s
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-256, SHA2-384, SHA2-512, SHA2-512/256, SHA3-256, SHA3-384, SHA3-512, SHAKE-128, SHAKE-256
      • Context Length: 0-2040 Increment 8
    • Capabilities:
      • Parameter Sets: SLH-DSA-SHA2-192f, SLH-DSA-SHA2-192s, SLH-DSA-SHAKE-192f, SLH-DSA-SHAKE-192s
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-384, SHA2-512, SHA3-384, SHA3-512, SHAKE-256
      • Context Length: 0-2040 Increment 8
    • Capabilities:
      • Parameter Sets: SLH-DSA-SHA2-256f, SLH-DSA-SHA2-256s, SLH-DSA-SHAKE-256f, SLH-DSA-SHAKE-256s
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-512, SHA3-512, SHAKE-256
      • Context Length: 0-2040 Increment 8
Ubuntu 24.04 LTS with Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
  • processor: Intel(R) Core(TM) Ultra 9 285K @3.7GHz without PAA
    • Processor
  • OS: Ubuntu 24.04 LTS
SLH-DSA SigVer
  • Signature Interfaces: external, internal
  • Pre Hash: preHash, pure
    • Capabilities:
      • Parameter Sets: SLH-DSA-SHA2-128f, SLH-DSA-SHA2-128s, SLH-DSA-SHAKE-128f, SLH-DSA-SHAKE-128s
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-256, SHA2-384, SHA2-512, SHA2-512/256, SHA3-256, SHA3-384, SHA3-512, SHAKE-128, SHAKE-256
      • Context Length: 0-2040 Increment 8
    • Capabilities:
      • Parameter Sets: SLH-DSA-SHA2-192f, SLH-DSA-SHA2-192s, SLH-DSA-SHAKE-192f, SLH-DSA-SHAKE-192s
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-384, SHA2-512, SHA3-384, SHA3-512, SHAKE-256
      • Context Length: 0-2040 Increment 8
    • Capabilities:
      • Parameter Sets: SLH-DSA-SHA2-256f, SLH-DSA-SHA2-256s, SLH-DSA-SHAKE-256f, SLH-DSA-SHAKE-256s
      • Message Length: 8-65536 Increment 8
      • Hash Algorithms: SHA2-512, SHA3-512, SHAKE-256
      • Context Length: 0-2040 Increment 8

Created October 05, 2016, Updated April 13, 2026