基于哈希的签名方案是后量子密码标准化程度最高的算法,但由于该类方案的一些技术特点和限制,在实际中的应用还处于探索实践阶段.因此,发现并解决应用基于哈希的签名方案的限制和困难对于其广泛应用是非常有必要的.首先概述了基于哈希的签名方案的产生及演变,对目前已标准化的方案进行了横纵对比分析;其次使用国产SM3 算法实例化FIPS205 中底层的哈希算法,给出了初步的实验结果和对比分析,进一步表明SM3 实例化SPHINCS+方案的可行性,推进我国无状态的基于哈希的签名方案的标准化进程;最后对基于哈希签名方案的应用进行了总结和建议,为其广泛应用和后量子密码迁移提供参考.
Hash-based signature scheme is the most standardized post-quantum cryptography algorithm,but due to some technical characteristics and limitations of this scheme,its application in practice is still in the exploration and practice stage.Therefore,it is necessary to find and solve the limitations and difficulties in applying hash-based signature scheme for its wide application.First,the emergence and evolution of hash-based signature schemes are summarized,and the standardized schemes are compared and analyzed.Then,the domestic SM3 algorithm is used to instantiate the hash algorithm of FIPS205 middle and bottom layer,and the preliminary experimental results and comparative analysis are given,which further indicate the feasibility of SM3 instantiating the SPHINCS+ scheme,and promote the standardization process of the stateless hash-based signature scheme in China.Finally,the applications of hash-based signature schemes are summarized and some suggestions are given to provide reference for its wide application and post-quantum cryptography migration.