Publications & Talks

In the following you find a hopefully up-to-date list of my publications. Below you find a selection of talks I gave and (in most cases) my slides. The code related to my papers can be found here if not stated otherwise within the paper.

English Publications

A Tight Security Proof for SPHINCS+, Formally Verified. [pdf]
joint work with Manuel Barbosa, François Dupressoir, Matthias Meijers, and Pierre-Yves Strub
ASIACRYPT 2024

On round elimination for special-sound multi-round identification and the generality of the hypercube for MPCitH. [pdf]
joint work with David Joseph, Christian Majenz, and Anand Kumar Narayanan
CRYPTO 2024

Batch Signatures, Revisited. [pdf]
joint work with Carlos Aguilar-Melchor, Martin R. Albrecht, Thomas Bailleux, Nina Bindel, James Howe, David Joseph, and Marc Manzano
CT-RSA 2024

Towards post-quantum secure PAKE – A tight security proof for OCAKE in the BPR model. [pdf]
joint work with Nouri Alnahawi, Kathrin Hövelmanns, and Silvia Ritsch
CANS 2024

SDitH in the QROM. [pdf]
joint work with Carlos Aguilar-Melchor, David Joseph, Christian Majenz, Eyal Ronen, and Dongze Yue
ASIACRYPT 2023

The security of Kyber’s FO-transform. [pdf]
joint work with Manuel Barbosa
Short note on IACR eprint, 2023

Machine-Checked Security for XMSS as in RFC 8391 and SPHINCS+. [pdf]
joint work with Manuel Barbosa, François Dupressoir, Benjamin Grégoire, Matthias Meijers, and Pierre-Yves Strub
CRYPTO 2023

Fixing and Mechanizing the Security Proof of Fiat-Shamir with Aborts and Dilithium. [pdf]
joint work with Manuel Barbosa, Gilles Barthe, Christian Doczkal, Jelle Don, Serge Fehr, Benjamin Grégoire, Yu-Hsuan Huang, Yi Lee, and Xiaodi Wu
CRYPTO 2023

The Return of the SDitH. [pdf]
joint work with Carlos Aguilar-Melchor, Nicolas Gama, James Howe, David Joseph, and Dongze Yue
EUROCRYPT, 2023

SPHINCS+C: Compressing SPHINCS+ With (Almost) No Cost. [pdf]
joint work with Mikhail Kudinov, Eyal Ronen, and Eylon Yogev
S&P 2023 / Talk at Fourth PQC Standardization Conference 2022

Recovering the tight security proof of SPHINCS+. [pdf]
joint work with Mikhail Kudinov
ASIACRYPT, 2022

Failing gracefully: Decryption failures and the Fujisaki-Okamoto transform. [pdf]
joint work with Kathrin Hövelmanns and Christian Majenz
ASIACRYPT, 2022

Post Quantum Noise. [pdf]
joint work with Yawning Angel, Benjamin Dowling, Peter Schwabe, and Fiona Weber
CCS 2022 / Talk at RWC’23

Formal Verification of Saber’s Public-Key Encryption Scheme in EasyCrypt. [pdf]
joint work with Matthias Meijers and Pierre-Yves Strub
CRYPTO 2022

Tight adaptive reprogramming in the QROM. [pdf]
joint work with Alex B. Grilo, Kathrin Hövelmanns, and Christian Majenz
ASIACRYPT 2021 / Talk at QIP’21

Verifying Post-Quantum Signatures in 8 kB of RAM. [pdf]
joint work with Ruben Gonzalez, Matthias J. Kannwischer, Juliane Krämer, Tanja Lange, Marc Stöttinger, Elisabeth Waitz, Thom Wiggers, and Bo-Yin Yang
PQCrypto 2021

Epochal Signatures for Deniable Group Chats. [pdf]
joint work with Fiona Weber
S&P 2021

Rapidly Verifiable XMSS Signatures. [pdf]
joint work with Joppe W. Bos, Joost Renes, and Christine van Vredendaal
TCHES 2021

Post-quantum WireGuard. [pdf]
joint work with Kai-Chun Ning, Peter Schwabe, Fiona Weber, and Philip R. Zimmermann
S&P 2021

The SPHINCS+ Signature Framework. [pdf]
joint work with Daniel J. Bernstein, Stefan Kölbl, Ruben Niederhagen, Joost Rijneveld, and Peter Schwabe
CCS 2019

Decisional second-preimage resistance: When does SPR imply PRE? [pdf]
joint work with Daniel J. Bernstein
ASIACRYPT 2019

Tighter proofs of CCA security in the quantum random oracle model. [pdf]
joint work with Nina Bindel, Mike Hamburg, Kathrin Hövelmanns, and Edoardo Persichetti
TCC 2019 / Talk at Second PQC Standardization Conference 2019

Quantum Indistinguishability of Random Sponges. [pdf]
joint work with Jan Czajkowski, and Christian Schaffner
CRYPTO 2019

Post-quantum security of the sponge construction. [pdf]
joint work with Jan Czajkowski, Leon Groot Bruinderink, Christian Schaffner, and Dominique Unruh
PQCrypto 2018 / Talk at QCRYPT 2017
Supersedes a temporary preprint by the first three authors and myself called “Quantum preimage, 2nd-preimage, and collision resistance of SHA3.”

Rounded Gaussians — Fast and Secure Constant-Time Sampling for Lattice-Based Crypto. [pdf]
joint work with Tanja Lange, Kit Smeets
PKC 2018

SOFIA: MQ-based signatures in the QROM. [pdf]
joint work with Ming-Shing Chen, Joost Rijneveld, Simona Samardjiska, Peter Schwabe
PKC 2018

High-speed key encapsulation from NTRU. [pdf]
joint work with Joost Rijneveld, John Schanck, and Peter Schwabe
CHES 2017

“Oops, I did it again” – Security of One-Time Signatures under Two-Message Attacks. [pdf]
joint work with Leon Groot Bruinderink
SAC 2017

From 5-pass MQ-based identification to MQ-based signatures. [pdf]
joint work with Ming-Shing Chen, Joost Rijneveld, Simona Samardjiska, Peter Schwabe
ASIACRYPT 2016

Semantic Security and Indistinguishability in the Quantum World. [pdf]
joint work with Tommaso Gagliardoni, Christian Schaffner
CRYPTO 2016

Flush, Gauss, and Reload — A Cache Attack on the BLISS Lattice-Based Signature Scheme. [pdf]
joint work with Leon Groot Bruinderink, Tanja Lange, Yuval Yarom
CHES 2016

Mitigating Multi-Target Attacks in Hash-based Signatures. [pdf]
joint work with Joost Rijneveld, Fang Song
PKC 2016

ARMed SPHINCS — Computing a 41KB signature in 16KB of RAM. [pdf]
joint work with Joost Rijneveld, Peter Schwabe
PKC 2016

PALPAS – PAsswordLess PAssword Synchronization. [pdf]
joint work with Moritz Horsch, Johannes Buchmann
ARES 2015

Hash-based Signatures: An Outline for a New Standard. [pdf]
joint work with Stefan-Lukas Gazdag, Denis Butin, Johannes Buchmann
NIST Workshop on Cybersecurity in a Post-Quantum World, 2015

Bad directions in cryptographic hash functions. [pdf]
joint work with Daniel J. Bernstein, Tanja Lange, Ruben Niederhagen
ACISP 2015

SPHINCS: practical stateless hash-based signatures. [pdf]
joint work with Daniel J. Bernstein, Daira Hopwood, Tanja Lange, Ruben Niederhagen, Louiza Papachristodoulou, Michael Schneider, Peter Schwabe, Zooko Wilcox O’Hearn
EUROCRYPT 2015

How to manipulate curve standards: a white paper for the black hat. [pdf]
joint work with Daniel J. Bernstein, Tung Chou, Chitchanok Chuengsatiansup, Tanja Lange, Ruben Niederhagen, Christine van Vredendaal
SSR 2015

Developing and testing SCoP – a visual hash scheme.
joint work with Maina M. Olembo, Timo Kilian, Simon Stockhardt, Melanie Volkamer
Information Management & Computer Security, Vol. 22, No. 4, 2014

Revocation & Non-Repudiation: When the first destroys the latter. [pdf]
joint work with Johannes Braun, Franziskus Kiefer
EuroPKI 2013

Discrete Ziggurat: A Time-Memory Trade-off for Sampling from a Gaussian Distribution over the Integers. [pdf]
joint work with Johannes Buchmann, Daniel Cabarcas, Florian Göpfert, Patrick Weiden
Selected Areas in Cryptography 2013 (SAC’13)

Optimal Parameters for XMSS^MT. [pdf]
joint work with Lea Rausch, Johannes Buchmann
MoCrySEn 2013

WOTS+ – Shorter Signatures for Hash-Based Signature Schemes. [pdf]
AFRICACRYPT 2013

Instantiating Treeless Signature Schemes. [link]
joint work with Patrick Weiden, Daniel Cabarcas, Johannes Buchmann
manuscript on IACR eprint, 2013

On the security of the Winternitz one-time signature scheme. [pdf]
joint work with Johannes Buchmann, Erik Dahmen, Sarah Ereth, Markus Rückert
International Journal of Applied Cryptography, Vol. 3, No. 1, 2013
An extended abstract appeared in AFRICACRYPT 2011

Developing and Testing a Visual Hash Scheme. [pdf]
joint work with Maina M. Olembo, Timo Kilian, Simon Stockhardt, Melanie Volkamer
Seventh International Symposium on Human Aspects of Information Security & Assurance (HAISA 2013)

How to avoid the Breakdown of Public Key Infrastructures – Forward Secure Signatures for Certificate Authorities. [pdf]
joint work with Johannes Braun, Alexander Wiesmaier, Martin A. G. Vigil, Johannes Buchmann
EuroPKI 2012

Forward Secure Signatures on Smart Cards. [pdf]
joint work with Christoph Busold, Johannes Buchmann
Selected Areas in Cryptography 2012 (SAC’12)

XMSS – A Practical Forward Secure Signature Scheme based on Minimal Security Assumptions. [pdf]
joint work with Johannes Buchmann, Erik Dahmen
PQCrypto 2011

Security of invertible media authentication schemes revisited. [pdf]
joint work with Daniel Dönigus, Stefan Endler, Marc Fischlin, Patrick Jäger, Anja Lehmann, Sergey Podrazhansky, Sebastian Schipp, Erik Tews, Sven Vowe, Matthias Walthart, Frederik Weidemann
Information Hiding, 2007.

Standardization:

RFC 8391. XMSS: eXtended Merkle Signature Scheme. [html]
joint work with Denis Butin, Stefan-Lukas Gazdag, Aziz Mohaisen, Joost Rijneveld
IRTF, 2018.

SPHINCS+ – Submission to the NIST post-quantum project. [zip]
joint work with Daniel J. Bernstein, Christoph Dobraunig, Maria Eichlseder, Scott Fluhrer, Stefan-Lukas Gazdag, Panos Kampanakis, Stefan Kölbl, Tanja Lange, Martin M. Lauridsen, Florian Mendel, Ruben Niederhagen, Christian Rechberger, Joost Rijneveld, Peter Schwabe
Accepted proposal for NIST post-quantum project, 2017.

NTRU-HRSS-KEM – Submission to NIST’s post-quantum project. [zip]
joint work with Joost Rijneveld, John M. Schanck, Peter Schwabe
Accepted proposal for NIST post-quantum project, 2017.

MQDSS – Submission to NIST’s post-quantum project. [zip]
joint work with Ming-Shing Chen, Joost Rijneveld, Simona Samardjiska, Peter Schwabe
Accepted proposal for NIST post-quantum project, 2017.

German Publications:

Langzeitsichere Signaturen durch den Einsatz hashbasierter Signaturverfahren.
(Long-term secure signatures using hash-based signature schemes)
joint work with Johannes Braun
13. Deutscher IT-Sicherheitskongress 2013

Effiziente Umsetzung des Kettenmodells unter Verwendung vorwärtssicherer Signaturverfahren.
(An efficient implementation of the chain model using forward secure signature schemes)
joint work with Johannes Braun, Moritz Horsch
13. Deutscher IT-Sicherheitskongress 2013

Postquantum Signaturverfahren Heute.
(Post-quantum signatures today)
joint work with Albrecht Petzoldt, Michael Schneider, Sidi Mohamed El Yousfi Alaoui
22. SIT-Smartcard Workshop 2012

Technical Reports:

Report on evaluation of KpqC candidates. [pdf]
joint work with Jolijn Cottaar, Kathrin Hövelmanns, Tanja Lange, Mohammad Mahzoun, Alex Pellegrini, Alberto Ravagnani, Sven Schäge, Monika Trimoska, Benne de Weger
IACR eprint 2023

Post-Quantum Cryptography – Integration study. [link]
joint work with Daniel J. Bernstein and Tanja Lange
ENISA Report 2022

Post-Quantum Cryptography: Current state and quantum mitigation. [link]
joint work with Ward Beullens, Jan-Pieter D’Anvers, Tanja Lange, Lorenz Panny, Cyprien de Saint Guilhem, Nigel P. Smart
ENISA Report 2021

Initial recommendations of long-term secure post-quantum systems (2015) [pdf]
joint work with Daniel Augot, Lejla Batina, Daniel J Bernstein, Joppe Bos, Johannes Buchmann, Wouter Castryck, Orr Dunkelman, Tim Güneysu, Shay Gueron, Tanja Lange, Mohamed Saied Emam Mohamed, Christian Rechberger, Peter Schwabe, Nicolas Sendrier, Frederik Vercauteren, Bo-Yin Yang
PQCRYPTO project report, 2015.

Schlanke Infrastrukturen für den digitalen Rechtsverkehr – Vorwärtssichere Verfahren für qualifizierte elektronische Signaturen.
joint work with Johannes Braun, Alexander Wiesmaier
ISPRAT final project report, 2012

Thesis

Practical Forward Secure Signatures using Minimal Security Assumptions. [link]
PhD Thesis, TU Darmstadt, 2013

Passwordsitter 2.0 – Analyse des Verbesserungspotentials und Weiterentwicklung.
Diploma Thesis, TU Darmstadt, 2008

Invited / Conference Talks:

2024 Thalia Symposium: Cyber Crime, Nijmegen, NL (04/2024)
Post-quantum cryptography. [pptx] [pdf]

KpqC Seminar, The Internet (04/2024)
Fiat-Shamir with Aborts. [pptx] [pdf]

PQC Spring School, Porto, Portugal (03/2024)
Signatures from identification, MPCitH, and more. [pptx] [pdf]
Hash-based signatures. [pptx] [pdf]

Asiacrypt, Guangzhou, China (12/2023)
SDitH in the QROM. [pptx] [pdf]

Crypto Working Group, Utrecht, NL (11/2023)
SDitH in the QROM. [pptx] [pdf]

Post-Quantum Cryptography Conference, Amsterdam, NL (11/2023)
Machine-checking post-quantum cryptography. [pptx] [pdf]

Real World PQC, Tokyo, Japan (03/2023)
SPHINCS+. [pptx] [pdf]

Fourth PQC Standardization Conference 2022, The Internet (11/2022)
SPHINCS+. [pptx] [pdf]

NLUUG Najaarsconferentie 2022, Utrecht, NL (11/2022)
An update on NIST’s PQC standardization process. [pptx] [pdf]

Symposium Post-Quantum Cryptography (Episode IV), Den Haag, NL (11/2022)
SPHINCS+. [pptx] [pdf]

PQCrypto 2022, The Internet (09/2022)
Hash-based Signatures: History & Challenges. [pptx] [pdf] [_video_]

ESA Workshop “Secure Communications for Space Missions in the Post-Quantum Era”, ESA, Katwijk aan Zee, NL (06/2022)
Hash-based Signatures and upcoming topics. [pptx] [pdf]

IWPQC 2021, The Internet (12/2021)
Hash-based signatures. [pptx] [pdf]

CAST-Workshop “Quantentechnologie und Quantencomputer-resistente Sicherheit“, The Internet (09/2021)
Secure communication in a quantum world. [pptx] [pdf]

Third PQC Standardization Conference 2021, The Internet (06/2021)
SPHINCS+. [pptx] [pdf]

SPR Tech Talks, Intel Labs, The Internet (04/2020)
The SPHINCS+ Signature Framework. [pptx] [pdf]

CASA Distinguished Lecture, Bochum, DE (01/2020)
From hash-function security in a post-quantum world to SPHINCS+. [pptx] [pdf]

Asiacrypt 2019, Kobe, JP (12/2019)
Decisional second-preimage resistance: When does SPR imply PRE? [pptx] [pdf]

Crypto Working Group, Utrecht, NL (11/2019)
Decisional second-preimage resistance: When does SPR imply PRE?
[pptx] [pdf]

NLUUG Najaarsconferentie 2019, Utrecht, NL (11/2019)
Post-Quantum Cryptography. [pptx] [pdf]

QT/e Seminar, Eindhoven, NL (10/2019)
Post-Quantum Cryptography. [pptx] [pdf]

CCS 2019, London, UK (11/2019)
The SPHINCS+ Signature Framework. [pptx] [pdf]

Second PQC Standardization Conference 2019, Santa Barbara, CA, USA (08/2019)
SPHINCS+. [pptx] [pdf]
MQDSS. [pdf]

Cyber Security Summer School 2019, Voore, Estonia (07/2019)
Post-quantum cryptography and early adoptions in cryptocurrencies. [pptx] [pdf]

Executive School on Post-Quantum Cryptography, Eindhoven, Netherlands  (07/2019)
Hash-based signatures. [pptx] [pdf]
(Post-quantum) cryptography – Security models, proofs and generic transforms. [pptx] [pdf]

Summer School on real-world crypto and privacy, Šibenik, Croatia (06/2019)
Simplified security arguments for hash-based signatures. [pptx] [pdf]
Introduction to the theory of secret key cryptography. [pdf]

Oxford Post-Quantum Cryptography Workshop, Oxford, UK (03/2019)
An attempt to simplify security arguments for hash-based signatures. [pptx] [pdf]

SSR 2018, Darmstadt, Germany (11/2018)
(To be) standardized hash-based signature schemes.  [pptx] [pdf]

PLLS 2018, Parnü, Estonia (09/2018)
Long-term secure authenticity using hash-based signatures. [pptx] [pdf]

QCrypt 2018, Shanghai, China (08/2018)
Post-Quantum Cryptography. [pptx] [pdf]

CAST-Workshop “Quantentechnologie und Quantencomputer-resistente Sicherheit”, Darmstadt, Germany (05/2018)
Hash-based signatures. [pptx] [pdf]

First PQC Standardization Conference, Fort Lauderdale, FL, USA (04/2018)
SPHINCS+. [pptx] [pdf]

National Mathematics Symposium, Eindhoven, Netherlands (03/2018)
Post-Quantum Cryptography & Privacy. [pptx] [pdf]

Combined event on Post-Quantum Cryptography, Tenerife, Spain (01/2018)
SPHINCS+. [pptx] [pdf]

Workshop on Cryptography for the Internet of Things and Cloud, Bochum, Germany (11/2017)
Long-term secure signatures for the IoT. [pptx] [pdf]

Post-Quantum Kryptographie Event, genua gmbh, it-sa Nürnberg, Germany (10/2017)
Topics in Post-Quantum Cryptography. [pptx] [pdf]

Dagstuhl Seminar Quantum Cryptanalysis, Schloss Dagstuhl, Germany (10/2017)
Post-quantum security of the sponge construction. [pdf]

5th ETSI/IQC Workshop on Quantum-Safe Cryptography, London, UK (09/2017)
The H2020 PQCRYPTO project, an update. [pdf]

Summer & Executive School on Post-Quantum Cryptography, Eindhoven, Netherlands (06/2017)
Hash-based signatures. [pptx] [pdf] [videos]

Awesome IT 2017, Amsterdam, Netherlands (04/2017)
Post-Quantum Cryptography & Privacy. [pptx] [pdf]

Crypto Working Group, Utrecht, Netherlands (03/2017)
Semantic Security and Indistinguishability in the Quantum World. [pptx] [pdf]

“Peaks in Dutch Cyber Security Research” at ICT.OPEN 2017, Amersfoort, Netherlands (03/2017)
Flush, Gauss, and Reload — A Cache Attack on the BLISS Lattice-Based Signature Scheme. [pptx] [pdf]

SmartSec Europe 2016, Amsterdam, Netherlands (11/2016)
Post-quantum Cryptography. [pptx] [pdf]

4th ETSI/IQC Workshop on Quantum-Safe Cryptography, Toronto, Canada (09/2016)
The H2020 PQCRYPTO project, an update. [pdf]

Crossing Seminar, TU Darmstadt, Germany (06/2016)
From 5-pass MQ-based identification to MQ-based signatures. [pdf]

IWR Kolloquium, Universität Heidelberg, Germany (06/2016)
Post-Quantum Cryptography & Privacy. [pptx] [pdf]

Security in Times of Surveillance, Eindhoven, Netherlands (05/2016)
Quantum Computing vs. Your Privacy. [pptx] [pdf]

CFRG@Eurocrypt’16, Vienna, Austria (05/2016)
XMSS Signatures. [pptx] [pdf]

IETF 95, Buenos Aires, Argentina (04/2016)
draft-irtf-cfrg-xmss-hash-based-signatures-03. [pdf]

FSE 2016 rump session, RUB, Bochum, Germany (03/2016)
Call for fast short-input hash functions. [pdf]

PKC 2016, Academia Sinica, Taipei, Taiwan (03/2016)
Mitigating Multi-Target Attacks in Hash-based Signatures. [pptx] [pdf]

PQCrypto Winterschool, Fukuoka, Japan (02/2016)
Hash-based signatures. [pptx] [pdf] [ video ]

ECC-Brainpool, BSI, Bonn, Germany (02/2016)
Hash-based signatures@CFRG. [pptx] [pdf]

TU Graz, Graz, Austria (01/2016)
Mitigating Multi-Target Attacks in Hash-based Signatures. [pptx] [pdf]

3rd ETSI/IQC Workshop on Quantum-Safe Cryptography, Seoul, South Korea (10/2015)
Recent Developments in Quantum Safe Crypto: Hash-based Signatures. [pptx] [pdf]
The H2020 PQCRYPTO Project. [pdf]

Dagstuhl Seminar Quantum Cryptanalysis, Schloss Dagstuhl, Germany (09/2015)
An update on hash-based signatures. [pptx] [pdf]

IQC Waterloo, ON, Canada (08/2015)
An update on hash-based signatures. [pptx] [pdf]

Australasian Conference on Information Security and Privacy, Brisbane, Australia (07/2015)
Bad directions in cryptographic hash functions. [pdf]

Summer school on real-world crypto and privacy, Šibenik, Croatia (06/2015)
Hash-based signatures. [pptx] [pdf]

Crypto Working Group, Utrecht, Netherlands (05/2015)
SPHINCS: practical stateless hash-based signatures. [pptx] [pdf]

Workshop on the International View of Cryptography and Security and Their Use in Practice VII, Sofia, Bulgaria (05/2015)
Standardization of hash-based signatures. [pdf]

Eurocrypt 2015, Sofia, Bulgaria (04/2015)
SPHINCS: practical stateless hash-based signatures. [pdf]

NIST Workshop on Cybersecurity in a Post-Quantum World, Gaithersburg, MD, USA (04/2015)
Panel: Shoring up the Infrastructure: A strategy for Standardizing Hash Signatures.

NIST Workshop on Cybersecurity in a Post-Quantum World, Gaithersburg, MD, USA (04/2015)
Hash-based Signatures: An outline for a new standard. [pdf]

IETF 92, Dallas, TX, USA (03/2015)
XMSS: Extended Hash-Based Signatures. [pdf]

Centrum Wiskunde & Informatica (CWI), Amsterdam, Netherlands (02/2015)
Hash-Based Signatures and SPHINCS. (see slides for DIMACS workshop)

DIMACS Workshop on The Mathematics of Post-Quantum Cryptography, Piscataway, NJ, USA (01/2015)
Hash-Based Signatures and SPHINCS. [pptx] [pdf]

Verisign SARL, Fribourg, Switzerland (11/2014)
SPHINCS: practical stateless hash-based signatures. [pptx] [pdf]

ETSI 2nd Quantum-Safe Crypto Workshop, Ottawa, ON, Canada (10/2014)
Towards A Standard for Practical Hash-based Signatures. [pptx] [pdf]

PQCrypto Summer School, Waterloo, ON, Canada (09/2014)
Hash-based Signatures. [link] [ video ] (incl. Johannes Buchmann’s part)

CDC Oberseminar TU Darmstadt, Germany (07/2014)
Practical Stateless Hash-based Signatures. [pptx] [pdf]

Crypto Working Group, Utrecht, Netherlands (05/2014)
Practical Forward Secure Signatures using Minimal Security Assumptions. [pptx] [pdf]

Workshop on the International View of Cryptography and Security and Their Use in Practice V, Copenhagen, Denmark (05/2014)
XMSS – Practical Hash-Based Signatures. [pptx] [pdf]

PhD defense, Darmstadt, Germany (09/2013)
Practical Forward Secure Signatures using Minimal Security Assumptions. [pptx]

CAST Workshop Smartcards, Darmstadt, Germany (09/2013)
Forward Secure Hash-based Signatures on Smartcards. [pptx]

MoCrySEn 2013, Regensburg, Germany (09/2013)
Optimal Parameters for XMSS^MT. [pptx]

Africacrypt 2013, Cairo, Egypt (06/2013)
WOTS+ – Shorter Signatures for Hash-Based Signature Schemes. [ppt]

13. Deutscher IT-Sicherheitskongress 2013, Bonn, Germany (05/2013)
Langzeitsichere Signaturen durch den Einsatz hashbasierter Signaturverfahren. [pptx]

SAC 2012, Windsor, ON, Canada (08/2012)
Forward Secure Signatures on Smart Card. [pptx]

22. SIT-Smartcard Workshop, Darmstadt, Germany (02/2012)
Postquantum Signaturverfahren Heute.

PQ Crypto 2011, Taipei, Taiwan (12/2011)
XMSS – A Practical Forward Secure Signature Scheme based on Minimal Security Assumptions. [pptx]

Africacrypt 2011, Dakar, Senegal (07/2011)
On the security of the Winternitz one-time signature scheme.

GI Kryptotag 2010, Darmstadt, Germany (11/2010)
Forward Security for Hash-Based Signatures.