mirror of
https://github.com/open-quantum-safe/liboqs.git
synced 2025-10-04 00:02:01 -04:00
971173ad82
Add support for LMS and XMSS. Key generation and signing are disabled behind a feature flag labelled "hazardous experimental." --------- Signed-off-by: Duc Tri Nguyen <dnguye69@gmu.edu> Signed-off-by: Spencer Wilson <spencer.wilson@uwaterloo.ca> Signed-off-by: Norman Ashley <nashley@cisco.com> Signed-off-by: Douglas Stebila <dstebila@uwaterloo.ca> Co-authored-by: Duc Tri Nguyen <dnguye69@gmu.edu> Co-authored-by: Douglas Stebila <dstebila@uwaterloo.ca> Co-authored-by: Duc Nguyen <106774416+ducnguyen-sb@users.noreply.github.com> Co-authored-by: Douglas Stebila <dstebila@users.noreply.github.com> Co-authored-by: Duc Nguyen <ductri.nguyen@sandboxquantum.com> Co-authored-by: Spencer Wilson <spencer.wilson@uwaterloo.ca> Co-authored-by: Jason Goertzen <133878263+jgoertzen-sb@users.noreply.github.com>
5.8 KiB
5.8 KiB
LMS
- Algorithm type: Digital signature scheme.
- Main cryptographic assumption: hash-based signatures.
- Principal submitters: Scott Fluhrer.
- Auxiliary submitters: C Martin, Maurice Hieronymus.
- Authors' website: https://www.rfc-editor.org/info/rfc8554
- Specification version: None.
- Primary Source:
- Source: https://github.com/cisco/hash-sigs
- Implementation license (SPDX-Identifier): MIT
Parameter set summary
| Parameter set | Security model | Claimed NIST Level | Public key size (bytes) | Secret key size (bytes) | Signature size (bytes) |
|---|---|---|---|---|---|
| LMS_SHA256_H5_W1 | 60 | 64 | 8688 | ||
| LMS_SHA256_H5_W2 | 60 | 64 | 4464 | ||
| LMS_SHA256_H5_W4 | 60 | 64 | 2352 | ||
| LMS_SHA256_H5_W8 | 60 | 64 | 1296 | ||
| LMS_SHA256_H10_W1 | 60 | 64 | 8848 | ||
| LMS_SHA256_H10_W2 | 60 | 64 | 4624 | ||
| LMS_SHA256_H10_W4 | 60 | 64 | 2512 | ||
| LMS_SHA256_H10_W8 | 60 | 64 | 1456 | ||
| LMS_SHA256_H15_W1 | 60 | 64 | 9008 | ||
| LMS_SHA256_H15_W2 | 60 | 64 | 4784 | ||
| LMS_SHA256_H15_W4 | 60 | 64 | 2672 | ||
| LMS_SHA256_H15_W8 | 60 | 64 | 1616 | ||
| LMS_SHA256_H20_W1 | 60 | 64 | 9168 | ||
| LMS_SHA256_H20_W2 | 60 | 64 | 4944 | ||
| LMS_SHA256_H20_W4 | 60 | 64 | 2832 | ||
| LMS_SHA256_H20_W8 | 60 | 64 | 1776 | ||
| LMS_SHA256_H25_W1 | 60 | 64 | 9328 | ||
| LMS_SHA256_H25_W2 | 60 | 64 | 5104 | ||
| LMS_SHA256_H25_W4 | 60 | 64 | 2992 | ||
| LMS_SHA256_H25_W8 | 60 | 64 | 1936 | ||
| LMS_SHA256_H5_W8_H5_W8 | 60 | 64 | 2644 | ||
| LMS_SHA256_H10_W4_H5_W8 | 60 | 64 | 2804 | ||
| LMS_SHA256_H10_W8_H5_W8 | 60 | 64 | 3860 | ||
| LMS_SHA256_H10_W2_H10_W2 | 60 | 64 | 9300 | ||
| LMS_SHA256_H10_W4_H10_W4 | 60 | 64 | 5076 | ||
| LMS_SHA256_H10_W8_H10_W8 | 60 | 64 | 2964 | ||
| LMS_SHA256_H15_W8_H5_W8 | 60 | 64 | 2964 | ||
| LMS_SHA256_H15_W8_H10_W8 | 60 | 64 | 3124 | ||
| LMS_SHA256_H15_W8_H15_W8 | 60 | 64 | 3284 | ||
| LMS_SHA256_H20_W8_H5_W8 | 60 | 64 | 3124 | ||
| LMS_SHA256_H20_W8_H10_W8 | 60 | 64 | 3284 | ||
| LMS_SHA256_H20_W8_H15_W8 | 60 | 64 | 3444 | ||
| LMS_SHA256_H20_W8_H20_W8 | 60 | 64 | 3604 |