Joost Rijneveld scite author profile

Abstract. This work introduces XMSS-T, a new stateful hash-based signature scheme with tight security. Previous hash-based signatures are facing a loss of security, linear in performance parameters such as the total tree height. Our new scheme can achieve the same security level but using hash functions with a smaller output length, which immediately leads to a smaller signature size. The same techniques also apply directly to the recent stateless hash-based signature scheme SPHINCS (Eurocrypt 2015), and the signature size is reduced as well. Being a little more specific and technical, the tight security stems from new multi-target notions of hash-function properties which we define and analyze. We show precise complexity for breaking these security properties under both classical and quantum generic attacks, thus establishing a reliable estimate for the quantum security of XMSS-T. In particular, we prove quantum query complexity tailored for cryptographic applications, which overcomes some limitations of standard techniques in quantum query complexity such as only considering worst-case complexity. Our proof techniques may be useful elsewhere. We also implement XMSS-T and compare its performance to that of XMSS (PQCrypto 2011), the most recent stateful hash-based signature scheme before our work.

show abstract

XMSS: eXtended Merkle Signature Scheme

Huelsing¹,

Butin²,

Gazdag³

et al. 2018

124

View full text Add to dashboard Cite

The SPHINCS ⁺ Signature Framework

Bernstein

Hülsing

Kölbl³

et al. 2019

143

View full text Add to dashboard Cite

We introduce SPHINCS + , a stateless hash-based signature framework. SPHINCS + has significant advantages over the state of the art in terms of speed, signature size, and security, and is among the nine remaining signature schemes in the second round of the NIST PQC standardization project. One of our main contributions in this context is a new few-time signature scheme that we call FORS. Our second main contribution is the introduction of tweakable hash functions and a demonstration how they allow for a unified security analysis of hash-based signature schemes. We give a security reduction for SPHINCS + using this abstraction and derive secure parameters in accordance with the resulting bound. Finally, we present speed results for our optimized implementation of SPHINCS + and compare to SPHINCS-256, Gravity-SPHINCS, and Picnic. CCS CONCEPTS• Security and privacy → Digital signatures.

show abstract

High-Speed Key Encapsulation from NTRU

Hülsing

Rijneveld

Schanck

et al. 2017

View full text Add to dashboard Cite

Abstract. This paper presents software demonstrating that the 20-year-old NTRU cryptosystem is competitive with more recent latticebased cryptosystems in terms of speed, key size, and ciphertext size. We present a slightly simplified version of textbook NTRU, select parameters for this encryption scheme that target the 128-bit post-quantum security level, construct a KEM that is CCA2-secure in the quantum random oracle model, and present highly optimized software targeting Intel CPUs with the AVX2 vector instruction set. This software takes only 307 914 cycles for the generation of a keypair, 48 646 for encapsulation, and 67 338 for decapsulation. It is, to the best of our knowledge, the first NTRU software with full protection against timing attacks.

show abstract

From 5-Pass $$\mathcal {MQ}$$-Based Identification to $$\mathcal {MQ}$$-Based Signatures

Chen

Hülsing

Rijneveld

et al. 2016

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Joost Rijneveld

Mitigating Multi-target Attacks in Hash-Based Signatures

XMSS: eXtended Merkle Signature Scheme

The SPHINCS ⁺ Signature Framework

High-Speed Key Encapsulation from NTRU

From 5-Pass $$\mathcal {MQ}$$-Based Identification to $$\mathcal {MQ}$$-Based Signatures

Contact Info

Product

Resources

About

Joost Rijneveld

Mitigating Multi-target Attacks in Hash-Based Signatures

XMSS: eXtended Merkle Signature Scheme

The SPHINCS + Signature Framework

High-Speed Key Encapsulation from NTRU

From 5-Pass $$\mathcal {MQ}$$-Based Identification to $$\mathcal {MQ}$$-Based Signatures

Contact Info

Product

Resources

About

The SPHINCS ⁺ Signature Framework