### Veri

Mahmoud Yehia, Riham AlTawy, and T. Aaron Gulliver

##### Abstract

SPHINCS+ is a stateless hash-based digital signature scheme and an alternate candidate in round 3 of the NIST Post- Quantum Cryptography standardization competition. Although not considered as a finalist because of its performance, SPHINCS+ may be considered for standardization by NIST after another round of evaluations. In this paper, we propose a Verfi able Obtained Random Subsets (v-ORS) generation mechanism which with one extra hash computation binds the message with the signing FORS instance (the underlying few-time signature algorithm). This enables SPHINCS+ to off er more security against generic attacks because the proposed modi cation restricts the ORS generation to use a hash key from the utilized signing FORS instance. Consequently, such a modi cation enables the exploration of di erent parameter sets for FORS to achieve better performance at the same security level. For instance, when using v-ORS, one parameter set for SPHINCS+-256s provides 82.9% reduction in the computation cost of FORS which leads to around 27% reduction in the number of hash calls of the signing procedure. Given that NIST has identfi ed the performance of SPHINCS+ as its main drawback, these results are a step forward in the path to standardization.

Available format(s)
Category
Public-key cryptography
Publication info
Published elsewhere. ACISP 2021
Keywords
hash-based signature SPHINCS+
Contact author(s)
raltawy @ uvic ca
History
2021-11-15: revised
See all versions
Short URL
https://ia.cr/2021/1495

CC BY

BibTeX

@misc{cryptoeprint:2021/1495,
author = {Mahmoud Yehia and Riham AlTawy and T.  Aaron Gulliver},
title = {Veri},
howpublished = {Cryptology ePrint Archive, Paper 2021/1495},
year = {2021},
note = {\url{https://eprint.iacr.org/2021/1495}},
url = {https://eprint.iacr.org/2021/1495}
}

Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.