DualSecure Key Exchange (DSKE): A Hybrid ECDH-SIDH Protocol for Post-Quantum Cryptography

Abstract

Quantum computing threatens classical key exchange protocols such as Elliptic Curve Diffie–Hellman (ECDH). Post-quantum schemes like Supersingular Isogeny Diffie–Hellman (SIDH) offer quantum resistance but at notable computational and communication costs. We propose DualSecure Key Exchange (DSKE), a hybrid protocol that integrates the classical security of ECDH with the quantum resistance of SIDH. Methodology: DSKE jointly derives two shared secrets  -KECDH via elliptic-curve scalar multiplication over a 256-bit prime field and KSIDHvia supersingular isogeny mappings—then fuses them using a secure KDF (e.g., SHA-3): K=KDF(KECDH || KSIDH). We formalize core operations and asymptotics (ECDH O(n3); SIDH O(mlog m)), specify key materials, and fix parameter choices aligned with established baselines (e.g., Curve25519 for ECDH and standard SIKE/SIDH parameter sets) to ensure reproducibility. Experimental settings: Evaluations were conducted on an Intel Core i7 with 16 GB RAM using Python-based cryptographic libraries, with repeated trials for timing stability. Results: DSKE achieves runtime = 6.6 ms versus ECDH = 1.2 ms and SIDH = 5.4 ms; communication = 512 bytes versus ECDH = 128 bytes and SIDH = 384 bytes; and key size 1024 bits (hybrid) versus 256 bits (ECDH) and 768 bits (SIDH). Comparative analysis against SIKE further contextualizes DSKE’s efficiency–security trade-off. Security strength follows the minimum of the constituent levels; with a 256-bit prime for ECDH (=128-bit classical) and standard SIDH/SIKE parameters (targeting =128-bit quantum), the fused key maintains an effective 128-bit level under the stated assumptions and KDF construction. These results indicate that DSKE offers a balanced pathway toward post-quantum readiness, particularly for long-lived, security-critical deployments that can tolerate modest overheads for dual-layer protection.

Authors

  • Veera Reddy Dasari
  • Padmaja Madugula,

DOI:

https://doi.org/10.31449/inf.v50i5.8214

Downloads

Published

02/02/2026

How to Cite

Dasari, V. R., & Madugula, P. (2026). DualSecure Key Exchange (DSKE): A Hybrid ECDH-SIDH Protocol for Post-Quantum Cryptography. Informatica, 50(5). https://doi.org/10.31449/inf.v50i5.8214

Issue

Vol. 50 No. 5 (2026): Online-only issue

Section

Online-only

License

Authors retain copyright in their work. By submitting to and publishing with Informatica, authors grant the publisher (Slovene Society Informatika) the non-exclusive right to publish, reproduce, and distribute the article and to identify itself as the original publisher.

All articles are published under the Creative Commons Attribution license CC BY 3.0. Under this license, others may share and adapt the work for any purpose, provided appropriate credit is given and changes (if any) are indicated.

Authors may deposit and share the submitted version, accepted manuscript, and published version, provided the original publication in Informatica is properly cited.