How to support Quantum-Resistant Cryptographic Algorithms for JWT Signature, Existing JWT Java libraries like jose4j, nimbus, etc do not have this support (implemented as per the spec: RFC 7518 - JSON Web Algorithms (JWA))
but providers like Bouncy Castle have started including support for these new algorithms.
From jose4j wiki (https://bitbucket.org/b_c/jose4j/wiki/Home
), “All of the JOSE algorithms are fully implemented by jose4j. However, the library relies on the underlying cryptography provider”
One thought would be adding support for these algorithms in jose4j and testing with Bouncy Castle as a cryptography provider.
NIST has selected the three algorithms CRYSTALS-Dilithium, FALCON and SPHINCS+ for digital signatures
Ref: