You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I was working on a personal project, and I needed to choose a post-quantum signature scheme. The app was built around relatively few users signing many messages with one keypair (e.g. chat). This entails small signatures and unbounded signing.
My options were between lattice crypto with large keys and signatures, stateless hash with even larger signatures, and stateful hash with extremely awkward requirements.
I noticed that the BC PQC provider listed Rainbow as an option. This is based on UOV, but is thoroughlybroken.
The best option for my (and many other) applications would be UOV. There seems to be a reference implementation floating around, alongside some custom ones.
Addition to the PQC package (and JCE provider) would be appreciated.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
I was working on a personal project, and I needed to choose a post-quantum signature scheme. The app was built around relatively few users signing many messages with one keypair (e.g. chat). This entails small signatures and unbounded signing.
My options were between lattice crypto with large keys and signatures, stateless hash with even larger signatures, and stateful hash with extremely awkward requirements.
I noticed that the BC PQC provider listed Rainbow as an option. This is based on UOV, but is thoroughly broken.
The best option for my (and many other) applications would be UOV. There seems to be a reference implementation floating around, alongside some custom ones.
Addition to the PQC package (and JCE provider) would be appreciated.
Beta Was this translation helpful? Give feedback.
All reactions