Lib.rs

Cryptography
#kyber #post-quantum

no-std ml-kem

Pure Rust implementation of the Module-Lattice-Based Key-Encapsulation Mechanism Standard (formerly known as Kyber) as described in FIPS 203

Owned by Tony Arcieri, RustCrypto.

8 releases

Uses new Rust 2024

0.3.0-pre.3 Jan 10, 2026
0.3.0-pre.2 Oct 31, 2025
0.3.0-pre Jan 21, 2025
0.2.1 Aug 17, 2024
0.0.1 Aug 24, 2023

#2778 in Cryptography

Download history 9286/week @ 2025-10-02 8021/week @ 2025-10-09 8056/week @ 2025-10-16 6668/week @ 2025-10-23 6982/week @ 2025-10-30 12213/week @ 2025-11-06 11929/week @ 2025-11-13 9897/week @ 2025-11-20 13656/week @ 2025-11-27 19941/week @ 2025-12-04 17246/week @ 2025-12-11 15165/week @ 2025-12-18 9949/week @ 2025-12-25 21045/week @ 2026-01-01 26255/week @ 2026-01-08 21183/week @ 2026-01-15

80,362 downloads per month
Used in 49 crates (26 directly)

Apache-2.0 OR MIT

110KB
2K SLoC

RustCrypto: ML-KEM

crate Docs Build Status Apache2/MIT licensed Rust Version Project Chat

Pure Rust implementation of the Module-Lattice-Based Key-Encapsulation Mechanism Standard (formerly known as Kyber) as described in FIPS 203 (final).

Documentation

About

ML-KEM is an algorithm which uses public-key cryptography to securely transfer a symmetric key between two parties who want to establish encrypted communications with each other. It uses algorithms which resist potential attacks by hypothetical future quantum computers which, when such computers are sufficiently mature, pose a problem for the algorithms we typically use for secure key establishment using public-key cryptography such as (EC)DH and RSA key encipherment.

Originally developed as CRYSTALS-Kyber (a.k.a. "Kyber"), ML-KEM is a refinement of the original Kyber algorithm after it was selected for standardization by NIST's Post-Quantum Cryptography (PQC) competition. The Kyber algorithm received considerable feedback as part of the standardization process and as such, ML-KEM includes many changes from the original Kyber. It can be though of as the official successor of Kyber.

In summary, ML-KEM stands at the forefront of post-quantum cryptography, offering enhanced security and efficiency in key encapsulation mechanisms to safeguard sensitive communications in an era where quantum computers potentially pose a looming threat.

⚠️ Security Warning

The implementation contained in this crate has never been independently audited!

USE AT YOUR OWN RISK!

Minimum Supported Rust Version (MSRV) Policy

MSRV increases are not considered breaking changes and can happen in patch releases.

The crate MSRV accounts for all supported targets and crate feature combinations, excluding explicitly unstable features.

License

Licensed under either of:

at your option.

Contribution

Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you, as defined in the Apache-2.0 license, shall be dual licensed as above, without any additional terms or conditions.

Dependencies

~1.5–2MB
~27K SLoC