-
Notifications
You must be signed in to change notification settings - Fork 8
XMSS
XMSS is a hash-based digital signature system defined in RFC 8391.
The only required algorithm in the RFC is based on SHA2-256.
Others based on SHA2-512, SHAKE-256, and SHAKE-512 are described.
The main building block is the WOTS+ one-time signature scheme.
The standard contains a total of 17 pseudo-code algorithms. The RFC authors also provide reference code in a separate repository.
Key generation is very time consuming. With parameters used in the reference implementation 1024 WOTS+ key-pairs have to be generated. It's currently not possible to implement this efficiently in hacspec.
WOTS+ signature verification is implemented and passes sign-verify tests as well as KAT generated with the reference implementation.
XMSS signature verification is implemented and passes sign-verify tests as well as KAT generated with the reference implementation.
WOTS+ signature generation is implemented and passes sign-verify tests.
XMSS signature generation is not yet implemented.