Algorithms

Each algorithm below maps to a CycloneDX cryptographic-asset component. Aliases are matched case/separator-insensitively and stored under the canonical SPDX name.

Generated from the catalog. To add or refine an algorithm, edit internal/cbom/catalog/algorithms.json and run just gen-cbom.

AlgorithmPrimitivePQC StatusQ-LevelClassicalOID
DESblock-cipherdeprecated056-
MD5hashdeprecated0-1.2.840.113549.2.5
RC4stream-cipherdeprecated0--
SHA-1hashdeprecated0-1.3.14.3.2.26
Triple DESblock-cipherdeprecated01121.2.840.113549.3.7
SecP256r1MLKEM768kemhybrid3--
SecP384r1MLKEM1024kemhybrid5--
X25519MLKEM768kemhybrid3--
AESblock-cipherquantum-safe12562.16.840.1.101.3.4.1
AIMersignaturequantum-safe1--
Argon2kdfquantum-safe0--
ChaCha20stream-cipherquantum-safe1256-
Classic McEliecekemquantum-safe5--
FN-DSA (Falcon)signaturequantum-safe1--
FrodoKEMkemquantum-safe3--
HAETAEsignaturequantum-safe2--
HMACmacquantum-safe1128-
HQCkemquantum-safe1--
LMS/HSSsignaturequantum-safe5--
ML-DSA-65signaturequantum-safe3--
ML-DSA-87signaturequantum-safe5--
ML-KEM-1024kemquantum-safe5--
ML-KEM-512kemquantum-safe1--
ML-KEM-768kemquantum-safe3--
NTRU+kemquantum-safe1--
PBKDF2kdfquantum-safe0-1.2.840.113549.1.5.12
SHA-256hashquantum-safe21282.16.840.1.101.3.4.2.1
SHA-384hashquantum-safe4192-
SHA-512hashquantum-safe5256-
SHA3-256hashquantum-safe2128-
SLH-DSAsignaturequantum-safe1--
SMAUG-Tkemquantum-safe1--
XMSS/XMSSMTsignaturequantum-safe5--
bcryptkdfquantum-safe0--
DSAsignaturequantum-vulnerable01121.2.840.10040.4.1
Diffie-Hellmankey-agreequantum-vulnerable0112-
ECDHkey-agreequantum-vulnerable01281.3.132.1.12
ECDSAsignaturequantum-vulnerable01281.2.840.10045.4.3
Ed25519signaturequantum-vulnerable01281.3.101.112
RSApkequantum-vulnerable01121.2.840.113549.1.1.1
X25519key-agreequantum-vulnerable0128-