Skip to content

QudsLab/NextSSL

BranchesTags

Repository files navigation

NextSSL Banner

License Apache-2.0 Status Under Development Algorithm Surfaces 250 Target Builds 29 Profiles



Plan Algorithm inventory Build Security Contributing



CRYPTO ARCHIVE + SAFETY-PROFILE TOOLKIT

NextSSL

A wide crypto archive with safe defaults you can inspect.

NextSSL is being built as a large crypto library for research, testing, and safer defaults. It tracks many algorithms, supports many platforms, and keeps risky choices away from normal users. The project is still under development, so the README is clear about what is planned and what is ready.


250
planned algorithm surfaces		 8
inventory groups		 29
target variants		 3
core domains

Status: under active development. Planned algorithms, target badges, and profile names show the roadmap. They do not mean the project is production-ready or audited.

Why NextSSL

TOP-TIER DIRECTION
Many algorithms, but safer defaults.
NextSSL can keep many algorithms in one place without making all of them default choices. The archive can be wide, while the default profile stays careful. 		SECURITY POSTURE
Defaults should be reviewed.
Experimental and old algorithms can stay in the archive. They should not become normal defaults unless the project clearly allows them. 		PORTABILITY
Built for many platforms.
The current layout tracks desktop, mobile, Linux, Windows, and WASM targets from the start.

The Model

Big archive. Small safe-default set. Clear review path.

NextSSL is organized around three areas: experimental, useful, and safest-main. Algorithms can be listed, studied, tested, and improved without becoming safe defaults by accident.

Simple rule: keep the archive wide, and keep defaults strict.

Archive to safe-default profile funnel

Algorithm Surface

NextSSL planned algorithm surface comparison

Current archive inventory: 250 planned algorithm surfaces across 8 groups.

Group Count Purpose
Modern 84 AEAD, MAC, KDF, signatures, curves, and key exchange work
Hash / KDF-hash 59 Hashes, XOFs, KMAC, and password-hash related surfaces
PQC 41 KEMs, signatures, and adjacent post-quantum candidates
Threshold 36 Threshold signatures, MPC, VSS, DKG, and related protocols
Encoding 14 Encodings and checksum helpers
Ascon 7 Lightweight AEAD, hash, XOF, MAC, and PRF surfaces
DRBG / RNG 7 DRBGs and randomness infrastructure
Stateful HBS 2 LMS and XMSS

Entries marked NEW in ALGO.md are planned items. They do not mean the code is finished.

Safety Profiles

SAFEST
Safe defaults for normal users.
The default profile should use modern, reviewed choices and avoid old or risky ones. 		COMPATIBILITY
Old-system support with warnings.
Older algorithms can be available for compatibility, but they should be clearly marked. 		RESEARCH
Experimental algorithms for study.
Researchers can inspect candidates, add references, and help move good choices forward.
Profile Purpose
safest Safe defaults for normal users
compatibility Legacy and migration support with warnings
research Experimental algorithms and review hooks
archive Full catalog inspection
pqc Post-quantum and hybrid migration work

Library Positioning

Aiming high, while being honest.

NextSSL is not claiming to replace OpenSSL, BoringSSL, libsodium, Botan, Crypto++, wolfSSL, or mbedTLS today. Those projects are older, more tested, and used in real systems.

The goal is different: become a useful crypto toolkit for people who want a big algorithm list plus strict defaults.

NextSSL positioning compared with other crypto libraries

Platform Targets

NextSSL platform and architecture build matrix

The current bin layout contains 29 target variants. Build docs are still changing; start with BUILD.md.

Family Targets
Android arm64-v8a, armeabi-v7a, x86, x86_64
iOS device-arm64, sim-arm64, sim-x86_64
Linux glibc arm64, armv7, loongarch64, ppc64le, riscv64, s390x, x86, x86_64
Linux musl arm64, armv7, x86_64
macOS arm64, universal, x86_64
WASM emscripten-wasm32, wasi-wasm32
Windows arm64-msvc, armv7-msvc, x86-mingw, x86-msvc, x86_64-mingw, x86_64-msvc

Project Docs

PLAN.md
Roadmap, profiles, safety labels, and contribution flow.		 ALGO.md
Complete current inventory and planned surfaces.		 BUILD.md
Build notes and target guidance.
CONTRIBUTING.md
How to add and review algorithms.		 SECURITY.md
Security reporting policy.		 LICENSE
Apache-2.0.

Target Tags

Linux glibc arm64 armv7 loongarch64 ppc64le riscv64 s390x x86 x86_64
Linux musl arm64 armv7 x86_64
Windows MSVC / MinGW arm64-msvc armv7-msvc x86-mingw x86-msvc x86_64-mingw x86_64-msvc
Android Android arm64-v8a armeabi-v7a x86 x86_64
Apple iOS device-arm64 sim-arm64 sim-x86_64
Apple macOS arm64 universal x86_64
WebAssembly WASM emscripten-wasm32 wasi-wasm32

Algorithm Tags

encoding 14 hash 59 modern 84 pqc 41 threshold 36 ascon 7 drbg rng 7 stateful hbs 2 total 250

Keep the archive wide. Keep the defaults strict.

NextSSL is building toward top-tier crypto-library status with a big algorithm catalog and clear safety profiles.

About

A crypto archive and safety-profile toolkit with many planned algorithms, strict defaults, and cross-platform targets.

qudslab.com/NextSSL

Topics

android hashing mac security ios cryptography encryption aead cross-platform wasm digital-signature randomness crypto-library kdf post-quantum-cryptography threshold-cryptography drbg pqc cross-plattform nextssl

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity
Custom properties

Stars

4 stars

Watchers

0 watching

Forks

1 fork
Report repository

Packages

 
 
 

Contributors

Languages