hash — SHA-2 + BLAKE3
SHA-256/384/512 (FIPS 180-4) plus BLAKE3 streaming + XOF + keyed + derive_key.
mac — HMAC + Poly1305
Keyed message-authentication codes — HMAC-SHA-2 family and Poly1305 one-time authenticator.
kdf — HKDF key-derivation
HKDF (RFC 5869) over SHA-256 / SHA-384 / SHA-512 — the standard key-derivation function for TLS 1.3, QUIC, and modern protocols.
cipher — AES + ChaCha20
Block cipher (AES) and stream cipher (ChaCha20) primitives. Used internally by the AEAD constructions; rarely used directly.
aead — AEAD ciphers (AES-GCM, ChaCha20-Poly1305)
Authenticated encryption with associated data. AES-128/256-GCM and ChaCha20-Poly1305. The AEAD layer used by TLS 1.3 and QUIC.
ecc — elliptic-curve cryptography
Ed25519 signatures, X25519 ECDH, NIST P-256, ECVRF (RFC 9381), BLS12-381 pairing-friendly threshold signatures.
pq — post-quantum (ML-KEM, ML-DSA, SPHINCS+)
NIST FIPS 203 (ML-KEM / Kyber), FIPS 204 (ML-DSA / Dilithium), FIPS 205 (SLH-DSA / SPHINCS+) — post-quantum KEM and signatures.
zk — Halo2 + STARK zero-knowledge
Halo2 + KZG10 (Plonk-style over BLS12-381) and STARK + FRI (PQ-secure, transparent setup). Two complementary zero-knowledge proof systems sharing a circuit-DSL design.
util — constant-time ops, zeroise, RNG
Timing-safe comparisons, secret-wipe, and the platform CSPRNG. Small utilities that matter enormously.
Auth primitives
JWT, COSE, TOTP/HOTP, password hashing, token generation, Merkle trees