[Cscwg-public] Hash based signatures

Tomas Gustavsson tomas.gustavsson at primekey.com
Tue Nov 5 00:50:10 MST 2019


Since we talked about PQC for code signing during todays session, it
might be useful to share some links to exchange info around
standardization. (I know several of participating organization here are
working a lot on PQC of course in different departments)

The NIST standardization on hash based signatures:

During a discussion with a person from NIST he told me that they are
considering recommending to only use it with an HSM. Or generally
speaking with a device that can ensure no private key re-use (as these
algorithms are stateful).

There is standardization in IETF:
XKMS: https://tools.ietf.org/html/rfc8391

Some OIDs specified in this draft:

Some usage in CMS signatures, used in code signing sometimes:

The BouncyCastle open source API (Java) has implemented full support for
XMSS and and XMSS^MT in the latest release.

Anyone that have other useful resources?


More information about the Cscwg-public mailing list