pkcs11 message
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]
Subject: Groups - Post Quantum Signatures uploaded
- From: Robert Relyea<rrelyea@redhat.com>
- To: <pkcs11@lists.oasis-open.org>
- Date: Wed, 8 Feb 2023 01:40:24 +0000 (UTC)
Submitter's message
Notes for Hash algorithms.
Like Kyber, I used CKA_PARAMETER_SET to select a preselected set of parameters. Like Kyber we can define experimental Parameter sets based on the Round 3 spec until the full NIST spec is released.
I defined a base single shot function and a combined hash version. We may want to rethink this because all the post quantum algorithms appear to expect Message to be the full signed message, and processes it through it's own hashing function with some preface values. If that's the case, then the base mechanism should be defined as a multi-part and single part and all the hash and sign mechanisms should be dropped.
SPHINCS+ defines the underlying hash separate from the other parameters (like HSS and XMSS). That underlying hash is a fixed characteristic of the underlying key, so like Parameters I've included it as an attribute on the key. It might be NIST will just pick one (actually likely), so we may not necessarily need it. Each security level of SPHINC+ has two variants - fast and slow. They affect the parameter set definitions, so I made it part of the parameter set (thus 6 parameters sets instead of 3).
-- Mr. Robert Relyea
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]