Literature on hash-based signatures

I started to collect all the literature related to hash-based signature schemes here. The list is based on the list by Dan Bernstein from I re-read all the articles and added small summaries of the content that in my eyes is important for hash-based signatures. I also added several articles that I think belong to this list. It is actually interesting what you find if you go through all the old papers. Some problems and ideas I thought about were already solved / proposed in those papers. I also added all patents that I am aware of. Most of them are expired, only one patent covering some ideas that could be used to improve hash-based signature schemes in the random oracle model is not expired, yet. But this one has no connection to XMSS or Sphincs.

If you are interested in hash-based signatures — please have a look. I appreciate any comments or additions.

How to manipulate curve standards: a white paper for the black hat

We know how hard it is for agencies to do their work these days. The Snowden revelations and all the related mistrust… Then researchers finally killed Dual EC. So how should they break encrypted Internet traffic to protect the people from all the various dangers out there?

We present a solution to make life easier for overworked agents. In our paper How to manipulate curve standards: a white paper for the black hat.”  we explain how to manipulate elliptic curve standardization to propose a curve that admits an exclusively known vulnerability. We show that this even works for the most restrictive curve generation procedures (i.e. Brainpool)  found in standards today. 

For more details see the paper or our project page.

XMSS code online

Finally! I managed to clean up the XMSS implementation we used for our benchmarks and put it online. I have to admit it took quite a while but the code also includes an implementation of XMSS^MT, i.e. XMSS with tree chaining and an improved algorithm for distributed signature generation. You find the implementation on the code page.


So I decided to start blogging now about new projects, results, papers, and other news; or simply about stuff that I decided not to be important enough to write a whole paper.