]> Cypherpunks repositories - keks.git/commit
projects / keks.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: aae03bb) | patch
Do randomised SPHINCS+ signatures
authorSergey Matveev <stargrave@stargrave.org>
Thu, 17 Apr 2025 08:12:31 +0000 (11:12 +0300)
committerSergey Matveev <stargrave@stargrave.org>
Thu, 17 Apr 2025 08:19:50 +0000 (11:19 +0300)
commit2624033f73cc69f1b3760775b8138ef4f88df742061d7b69e0e66d9779ac2b82
tree73b38a95d063f940aefd614af5095a48636a0877f4bcf7fda8732f523383e72ftree
parentaae03bb52237329dbfaee2b1ad4ca1ecfd88691c64f7ae027921b4735ca2c474commit | diff
Do randomised SPHINCS+ signatures

Unlike classical signature schemes like ECDSA, here entropy is only used
for randomisation. Even if low quality PRNG is in use, even if it is
constant, it has no security drawbacks on private key leakage (except
for side-channel attacks). ECDSA/GOST 34.10 can be completely compromised
with bad PRNGs.
go/cm/hash/algo.go diff | blob | history
go/cm/hash/shake.go diff | blob | history
go/cm/sign/pub.go diff | blob | history
go/cm/sign/spx/kp.go diff | blob | history
go/cm/sign/spx/signer.go diff | blob | history
spec/cm/signed.texi diff | blob | history
KEKS codec