Optimization of digital signature calculation and verification operations for the FIPS 205 standard

Authors

DOI:

https://doi.org/10.30837/rt.2025.2.221.01

Keywords:

post-quantum standards, parallel computing, optimization, hash functions, extendable-output functions, SHA3, SHA2

Abstract

Currently, significant efforts at the international and national levels are focused on the creation of practical quantum-resistant digital signature (DS) mechanisms. The first round of the international PQC competition has been conducted [1], which resulted in the creation and standardization of the finalists of the 3rd round of the competition, recommended as international standards, as US federal standards, in particular FIPS 205, a stateless digital signature standard based on a hash function (SPHINCS+ algorithm).

A hash-based signature is one of the most promising candidates (and perhaps the most conservative approach) for a post-quantum digital signature. The advantage of hash-based signatures is that their (classical and quantum) security strength is better understood (and easier to evaluate) than other candidates relying solely on the idealized strength of cryptographic hash functions.

The signature scheme standardized in FIPS 205 is constructed using other hash-based signature schemes as components: a few-time signature scheme, forest of random subsets (FORS), and a multi-time signature scheme, the eXtended Merkle Signature Scheme (XMSS).

The standard defines a DS scheme designed to withstand future quantum and classical quantum computer attacks that threaten the security of existing standards. Since the algorithm has already been standardized, an important task is to study its structure and practical implementation of the requirements for its components: parameter construction, key pair generation, DS production and verification, etc. Its solution depends to a large extent on improving the algorithm in terms of execution complexity (speed), which can be reduced to optimizing basic operations.

In this article, we consider and propose practical improvements to optimize the DS for the FIPS 205 algorithm based on the use of parallel computing. This is achieved mainly by optimizing the SHAKE256, SHA256, and SHA512 algorithms. The importance of optimizing the calculation of hash values is related to the fact that hashing is the main operation in FIPS 205.

The results obtained indicate the feasibility and relevance of the improvements made. Optimization provides a minimum speedup of 10% for all operations and all parameters.

References

National Institute of Standards and Technology. (2017, January) // Post-Quantum Cryptography [Online]. Available: https://csrc.nist.gov/Projects/post-quantum-cryptography

Module-Lattice-Based Digital Signature Standard, FIPS 204, 2024 [Online]. Available: https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.204.pdf

Stateless Hash-Based Digital Signature Standard, FIPS 205, 2024 [Online]. Available: https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.205.pdf

D. Moody, R. Perlner, A. Regenscheid, A. Robinson, and D. Cooper. Transition to Post-Quantum Cryptography Standards // NIST Internal Report 8547 (Initial Public Draft) [Online], November 2024. Available: https://nvlpubs.nist.gov/nistpubs/ir/2024/NIST.IR.8547.ipd.pdf

National Institute of Standards and Technology. (2020, October) // Post-Quantum Cryptography. Round 3 Submissions. CRYSTALS-DILITHIUM. [Online]. Available: https://csrc.nist.gov/Projects/post-quantum-cryptography/post-quantum-cryptography-standardization/round-3-submissions

J.-P. Aumasson, D. J. Bernstein, W. Beullens, C. Dobraunig, M. Eichlseder, S. Fluhrer, S.-L. Gazdag, A. Hülsing, P. Kampanakis, S. Kölbl, T. Lange, M. M. Lauridsen, F. Mendel, R. Niederhagen, C. Rechberger, J. Rijneveld, P. Schwabe, and B. Westerbaan //“SPHINCS+: Submission to the NIST Post-Quantum Project, v3.1 [Online], June 2022. Available: https://sphincs.org/data/sphincs+-r3.1-specification.pdf

Downloads

Published

2025-06-19

How to Cite

Gorbenko, I., Kachko, O., & Derevianko, Y. (2025). Optimization of digital signature calculation and verification operations for the FIPS 205 standard. Radiotekhnika, (221), 7–13. https://doi.org/10.30837/rt.2025.2.221.01

Issue

No. 221 (2025): Радіотехніка

Section

Articles

License

Authors who publish with this journal agree to the following terms:

1. Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.

2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.

3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (See The Effect of Open Access).