/

MLKEM1024

MLKEM1024 is the highest security variant of the ML-KEM family, offering NIST Level 5 security for maximum protection against quantum threats.

Security Level

MLKEM1024 provides:

  • NIST Security Level 5
  • Maximum quantum resistance
  • Highest security margin
  • Future-proof protection

Master Phrase Security

Your master encryption phrase is critical for data access. If lost, your encrypted files cannot be recovered. We strongly recommend using ByteHide Secrets for secure phrase management.

See our Zero-Knowledge Encryption guide for detailed information.

Implementation

// Initialize with secure key management
var secrets = new SecretsManager("<secrets_token>");
string masterPhrase = await secrets.Get("storage_master_phrase");

var storage = new StorageManager(
    "<token>", 
    masterPhrase,
    quantumAlgorithm: QuantumAlgorithmType.MLKEM1024
);

// Use in operations
await storage
    .EncryptWithQuantum()
    .Set("classified-data.dat", sensitiveData);

Performance Characteristics

  • Key Generation: ~100μs
  • Encapsulation: ~110μs
  • Decapsulation: ~100μs
  • Public Key Size: 1568 bytes
  • Secret Key Size: 3168 bytes
  • Ciphertext Size: 1568 bytes

Use Cases

Ideal for:

  • Government classified data
  • Military applications
  • Critical infrastructure
  • High-value financial transactions

Maximum Security

MLKEM1024 provides the highest level of security in the ML-KEM family. While it has larger key sizes and slightly lower performance, it's the recommended choice for protecting highly sensitive data against future quantum threats.

Best Practices

  1. Key Management

    • Use ByteHide Secrets for master phrase storage
    • Never hardcode the phrase in your code
    • Implement proper key rotation procedures
    • Keep secure backups of your master phrase

  2. Implementation

    • Enable quantum protection for all operations
    • Regular security audits
    • Comprehensive logging
    • Performance monitoring

  3. Security Architecture

    • Document security requirements
    • Regular threat assessments
    • Compliance validation
    • Incident response planning

Performance Consideration

While MLKEM1024 provides maximum security, it comes with larger key sizes and slightly higher computational overhead. Consider your performance requirements when choosing this level of protection.

Previous
MLKEM768
Next
Sntrup761