Vault — Safety Deposit Boxes
Research Origin
This project demonstrates Korean post-quantum cryptographic algorithms compiled to WebAssembly for educational and experimental use.
Algorithms included:
- SMAUG-T (스마우그-T) — lattice-based Key Encapsulation Mechanism (KEM)
- HAETAE (해태) — post-quantum digital signature algorithm
The implementations are derived from reference code produced by Korean cryptography researchers as part of the KpqC competition.
⚡ Quick Decision Rules
When unsure → AES-256-GCM + Argon2id + ML-KEM. These are safe defaults.
💥 What Breaks If You Choose Wrong
Nonce reuse (AES-GCM)
Attacker recovers XOR of plaintexts + the authentication key. Total break.
Too few Shamir shares
Reconstruction produces random garbage. No partial leak — information-theoretically secure.
Skip signature verification
Attacker substitutes containers or shares. Chosen-ciphertext attacks become possible.
Classical-only key exchange
Harvest now, decrypt later. Quantum computer breaks RSA/ECDH retroactively.
⚠️ Disclaimers
- Educational only — do not use for production data protection.
- Not audited — C reference implementations have not undergone formal security audit.
- Browser WASM timing is not constant-time. Side-channel resistance is not guaranteed.