You are looking at a specific version 20170426:171907 of this paper.
See the latest version.
Paper 2017/349
LMS vs XMSS: A comparison of the Stateful Hash-Based Signature Proposed Standards
Panos Kampanakis, Scott Fluhrer
Abstract
Quantum computing poses challenges to public key signature schemes as we know them today. LMS and XMSS are two hash based signature schemes that have been proposed in the IETF as quantum secure. Both schemes are based on well-studied hash trees, but their similarities and differences have not yet been discussed. In this work, we attempt to compare the two standards. We compare their security assumptions and quantify their signature and public key sizes. We also address the computation overhead they introduce. Our goal is to provide a clear understanding of the schemes' similarities and differences for implementers and protocol designers to be able to make a decision as to which standard to chose.
Metadata
- Available format(s)
- Category
- Public-key cryptography
- Publication info
- Preprint. MINOR revision.
- Keywords
- post-quantum cryptographyhash based signatureshbs
- Contact author(s)
-
panosk @ cisco com
sfluhrer @ cisco com - History
- 2017-11-23: last of 2 revisions
- 2017-04-26: received
- See all versions
- Short URL
- https://ia.cr/2017/349
- License
-
CC BY