HPKE

Declaration

enum HPKE

Overview

Hybrid public key encryption (HPKE) uses a symmetric encryption algorithm to encrypt data, and encapsulates the symmetric encryption material using a public key encryption algorithm.

HPKE ensures that the ciphertext wasn’t tampered with after its creation. It can also check the validity of additional cleartext data in apps where you need to send headers or other metadata as cleartext.

HPKE optionally incorporates sender authentication, allowing the recipient to validate the authenticity of messages using the sender’s public key.

HPKE is described in the Internet Research Task Force (IRTF) document RFC 9180.

Topics

Sending and receiving messages

• HPKE.Sender
• HPKE.Recipient

Choosing cryptographic algorithms

• HPKE.Ciphersuite
• HPKE.AEAD
• HPKE.KDF
• HPKE.KEM
• HPKE.DHKEM

Handling errors

• HPKE.Errors

Relationships

Conforms To

• Sendable
• SendableMetatype

See Also

Public key cryptography

• Curve25519
• P521
• P384
• P256
• SharedSecret
• SecureEnclave