UDIF: Universal Digital Identification Framework 1.0.0.0a (A1)
A quantum-secure cryptographic identification
kdf.h
Go to the documentation of this file.
1/* 2025-2026 Quantum Resistant Cryptographic Solutions Corporation
2 * All Rights Reserved.
3 *
4 * NOTICE:
5 * This software and all accompanying materials are the exclusive property of
6 * Quantum Resistant Cryptographic Solutions Corporation (QRCS). The intellectual
7 * and technical concepts contained herein are proprietary to QRCS and are
8 * protected under applicable Canadian, U.S., and international copyright,
9 * patent, and trade secret laws.
10 *
11 * CRYPTOGRAPHIC ALGORITHMS AND IMPLEMENTATIONS:
12 * - This software includes implementations of cryptographic primitives and
13 * algorithms that are standardized or in the public domain, such as AES
14 * and SHA-3, which are not proprietary to QRCS.
15 * - This software also includes cryptographic primitives, constructions, and
16 * algorithms designed by QRCS, including but not limited to RCS, SCB, CSX, QMAC, and
17 * related components, which are proprietary to QRCS.
18 * - All source code, implementations, protocol compositions, optimizations,
19 * parameter selections, and engineering work contained in this software are
20 * original works of QRCS and are protected under this license.
21 *
22 * LICENSE AND USE RESTRICTIONS:
23 * - This software is licensed under the Quantum Resistant Cryptographic Solutions
24 * Public Research and Evaluation License (QRCS-PREL), 2025-2026.
25 * - Permission is granted solely for non-commercial evaluation, academic research,
26 * cryptographic analysis, interoperability testing, and feasibility assessment.
27 * - Commercial use, production deployment, commercial redistribution, or
28 * integration into products or services is strictly prohibited without a
29 * separate written license agreement executed with QRCS.
30 * - Licensing and authorized distribution are solely at the discretion of QRCS.
31 *
32 * EXPERIMENTAL CRYPTOGRAPHY NOTICE:
33 * Portions of this software may include experimental, novel, or evolving
34 * cryptographic designs. Use of this software is entirely at the user's risk.
35 *
36 * DISCLAIMER:
37 * THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
38 * IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS
39 * FOR A PARTICULAR PURPOSE, SECURITY, OR NON-INFRINGEMENT. QRCS DISCLAIMS ALL
40 * LIABILITY FOR ANY DIRECT, INDIRECT, INCIDENTAL, OR CONSEQUENTIAL DAMAGES
41 * ARISING FROM THE USE OR MISUSE OF THIS SOFTWARE.
42 *
43 * FULL LICENSE:
44 * This software is subject to the Quantum Resistant Cryptographic Solutions
45 * Public Research and Evaluation License (QRCS-PREL), 2025-2026. The complete license terms
46 * are provided in the accompanying LICENSE file or at https://www.qrcscorp.ca.
47 *
48 * Written by: John G. Underhill
49 * Contact: contact@qrcscorp.ca
50 */
51
52#ifndef UDIF_KDF_H
53#define UDIF_KDF_H
54
55#include "udif.h"
56
71
86UDIF_EXPORT_API void udif_kdf_hash(uint8_t* output, size_t outlen, const uint8_t* input, size_t inplen, const uint8_t* name, size_t namelen);
87
102UDIF_EXPORT_API void udif_kdf_hash_custom(uint8_t* output, size_t outlen, const uint8_t* input, size_t inplen, const uint8_t* name, size_t namelen, const uint8_t* custom, size_t custlen);
103
121UDIF_EXPORT_API void udif_kdf_session_keys(uint8_t* txkey, uint8_t* txnonce, uint8_t* rxkey, uint8_t* rxnonce, uint8_t* state,
122 const uint8_t* ikm, size_t ikmlen, const uint8_t* transcript, size_t transcriptlen, bool initiator);
123
143UDIF_EXPORT_API void udif_kdf_ratchet(uint8_t* txkey, uint8_t* txnonce, uint8_t* rxkey, uint8_t* rxnonce, uint8_t* newstate, const uint8_t* prevstate,
144 const uint8_t* kemsecret, size_t kemseclen, const uint8_t* sessionid, size_t sessidlen, uint64_t epoch, bool initiator);
145
156UDIF_EXPORT_API void udif_kdf_object_digest(uint8_t* digest, const udif_object* obj);
157
168UDIF_EXPORT_API void udif_kdf_anchor_digest(uint8_t* digest, const udif_anchor_record* anchor);
169
180UDIF_EXPORT_API void udif_kdf_capability_digest(uint8_t* digest, const udif_capability* cap);
181
193UDIF_EXPORT_API void udif_kdf_transfer_digest(uint8_t* digest, const uint8_t* objserial, const uint8_t* txid, const uint8_t* toowner, uint64_t timestamp);
194
206UDIF_EXPORT_API void udif_kdf_session_id(uint8_t* sessionid, const uint8_t* localser, const uint8_t* remoteser, const uint8_t* ikm, size_t ikmlen);
207
208#endif
udif_kdf_session_keys
UDIF_EXPORT_API void udif_kdf_session_keys(uint8_t *txkey, uint8_t *txnonce, uint8_t *rxkey, uint8_t *rxnonce, uint8_t *state, const uint8_t *ikm, size_t ikmlen, const uint8_t *transcript, size_t transcriptlen, bool initiator)
Derive session keys from handshake material.
udif_kdf_ratchet
UDIF_EXPORT_API void udif_kdf_ratchet(uint8_t *txkey, uint8_t *txnonce, uint8_t *rxkey, uint8_t *rxnonce, uint8_t *newstate, const uint8_t *prevstate, const uint8_t *kemsecret, size_t kemseclen, const uint8_t *sessionid, size_t sessidlen, uint64_t epoch, bool initiator)
Derive ratchet keys from KEM exchange.
udif_kdf_object_digest
UDIF_EXPORT_API void udif_kdf_object_digest(uint8_t *digest, const udif_object *obj)
Compute object digest.
udif_kdf_hash_custom
UDIF_EXPORT_API void udif_kdf_hash_custom(uint8_t *output, size_t outlen, const uint8_t *input, size_t inplen, const uint8_t *name, size_t namelen, const uint8_t *custom, size_t custlen)
Compute a domain-separated hash with custom data.
Definition kdf.c:21
udif_kdf_anchor_digest
UDIF_EXPORT_API void udif_kdf_anchor_digest(uint8_t *digest, const udif_anchor_record *anchor)
Compute anchor record digest.
udif_kdf_transfer_digest
UDIF_EXPORT_API void udif_kdf_transfer_digest(uint8_t *digest, const uint8_t *objserial, const uint8_t *txid, const uint8_t *toowner, uint64_t timestamp)
Compute transfer transaction digest.
udif_kdf_capability_digest
UDIF_EXPORT_API void udif_kdf_capability_digest(uint8_t *digest, const udif_capability *cap)
Compute capability digest.
udif_kdf_hash
UDIF_EXPORT_API void udif_kdf_hash(uint8_t *output, size_t outlen, const uint8_t *input, size_t inplen, const uint8_t *name, size_t namelen)
Compute a domain-separated hash.
Definition kdf.c:9
udif_kdf_session_id
UDIF_EXPORT_API void udif_kdf_session_id(uint8_t *sessionid, const uint8_t *localser, const uint8_t *remoteser, const uint8_t *ikm, size_t ikmlen)
Compute session identifier.
udif_anchor_record
Anchor record.
Definition anchor.h:159
udif_capability
Capability token.
Definition capability.h:108
udif_object
UDIF object container.
Definition object.h:148
udif.h
UDIF Common Definitions and Protocol Configuration.
UDIF_EXPORT_API
#define UDIF_EXPORT_API
The api export prefix.
Definition udifcommon.h:103