Post-Apocalyptic Crypto
TIMECOP
/ crypto_sign

Primitives for crypto_sign

This page lists all primitives grouped under operation crypto_sign.

For each primitive, all listed implementations were checked across a number of compilers, compiler options, and hosts.

The progress bar shows the relative number of successes, fails, and errors:

  • Success. The constant-time checker didn't find any cases where the execution time of the tested code depends on secret data.
  • Fail. The execution time of the tested code depends on secret data.
  • Error.

Errors can have multiple causes:
  • The constant-time checker encountered an error and couldn't be completed.
  • Valgrind found memory issues, but none of them are related to constant-time checks.
  • The constant-time checker timed out after 6 minutes.
  • The tested code produced invalid results. More details can be found near the start of the output file. Example: 
    crypto_aead_decrypt returns nonzero

The absolute number of successes, fails, and errors is shown to the left of the progress bar.

The following code was used to flag secret data, and test implementations:

1void timecop_doit(void)
2{
3 poison(s, crypto_sign_SECRETKEYBYTES);
4 crypto_sign(c,&clen,m,mlen,s);
5 unpoison(p, crypto_sign_PUBLICKEYBYTES);
6 unpoison(c, clen);
7 crypto_sign_open(t,&tlen,c,clen,p);
8}

Click an implementation to see all checked compiler options.

3icp
Description
3-invertible cycle with minus and prefix
Designers
Jintai Ding
Christopher Wolf
Bo-Yin Yang
Implementations:
ref 0 / 5 / 3
chevron_right
dilithium2
Implementations:
ref 0 / 9 / 0
chevron_right
dilithium3
Implementations:
ref 0 / 9 / 0
chevron_right
dilithium4
Implementations:
ref 0 / 9 / 0
chevron_right
donald2048
Description
DSA signatures using a 2048-bit prime
Designers
Example for eBATS
Implementations:
cryptopp 0 / 0 / 9
chevron_right
ed25519
Description
EdDSA signatures using Curve25519
Designers
Daniel J. Bernstein
Niels Duif
Tanja Lange
Peter Schwabe
Bo-Yin Yang
Implementations:
ref 9 / 0 / 0
chevron_right ref10 9 / 0 / 0
chevron_right
ed448goldilocks
Description
Ed448-Goldilocks sign and dh
Designers
Mike Hamburg
Implementations:
32 0 / 4 / 5
chevron_right 64 0 / 4 / 5
chevron_right amd64 0 / 4 / 5
chevron_right arm32 0 / 4 / 1
chevron_right
edons128k08n72nu8l4mu3
Description
An alternative Edon-S signature scheme proposal in Category 2.
Conjectured security requires computational resources comparable to
or greater than those required for finding collisions in SHA256 - Category 2

Designers
Danilo Gligoroski
Implementations:
ref 0 / 9 / 0
chevron_right
edons128ref
Description
Reference proposal for signature scheme Edon-S128.
Conjectured security requires computational resources comparable to
or greater than those required for finding collisions in SHA256 - Category 2
Designers
Danilo Gligoroski
Implementations:
ref 0 / 9 / 0
chevron_right
gemss128
Implementations:
ref 0 / 0 / 9
chevron_right sse2 0 / 5 / 4
chevron_right
gemss192
Implementations:
ref 0 / 0 / 9
chevron_right sse2 0 / 5 / 0
chevron_right
gemss256
Implementations:
ref 0 / 0 / 9
chevron_right sse2 0 / 5 / 0
chevron_right
gravitysphincsl
Implementations:
fast 0 / 0 / 5
chevron_right ref 0 / 0 / 9
chevron_right
gravitysphincsm
Implementations:
fast 0 / 0 / 5
chevron_right ref 0 / 0 / 9
chevron_right
gravitysphincss
Implementations:
fast 0 / 0 / 5
chevron_right ref 0 / 0 / 9
chevron_right
gui184
Implementations:
amd64 0 / 6 / 3
chevron_right ref 0 / 3 / 6
chevron_right
gui312
Implementations:
amd64 0 / 0 / 9
chevron_right ref 0 / 0 / 9
chevron_right
gui448
Implementations:
amd64 0 / 0 / 9
chevron_right ref 0 / 0 / 9
chevron_right
hector
Description
Hyperelliptic Curve with Two-Rank One: Signatures using a genus-2 hyperelliptic curve of 2-rank 1 over a field of size 2^113
Designers
Peter Birkner (Technische Universiteit Eindhoven)
Peter Schwabe (Technische Universiteit Eindhoven)
Implementations:
ref 0 / 4 / 0
chevron_right
luov4849242
Implementations:
portable 0 / 9 / 0
chevron_right ref 0 / 9 / 0
chevron_right
luov6468330
Implementations:
portable 0 / 9 / 0
chevron_right ref 0 / 9 / 0
chevron_right
luov8086399
Implementations:
portable 0 / 9 / 0
chevron_right ref 0 / 9 / 0
chevron_right
luov8117404
Description
The LUOV signature scheme, with parameters for NIST security level 5.
Designers
Ward Beullens
Implementations:
portable 0 / 9 / 0
chevron_right ref 0 / 9 / 0
chevron_right
luov863256
Description
The LUOV signature scheme, with parameters for NIST security level 2.
Designers
Ward Beullens
Implementations:
portable 0 / 9 / 0
chevron_right ref 0 / 9 / 0
chevron_right
luov890351
Description
The LUOV signature scheme, with parameters for NIST security level 4.
Designers
Ward Beullens
Implementations:
portable 0 / 9 / 0
chevron_right ref 0 / 9 / 0
chevron_right
mqdss48
Implementations:
ref 0 / 8 / 1
chevron_right
mqdss64
Implementations:
ref 0 / 8 / 1
chevron_right
mqqsig160
Description
mqqsig160 - 160-bit signatures based on Multivariate-Quadratic-Quasigroups
Designers
Danilo Gligoroski (The Norwegian University of Science and Technology (NTNU), NORWAY)
Rune Steinsmo Ødegard (The Norwegian University of Science and Technology (NTNU), NORWAY)
Rune Erlend Jensen (The Norwegian University of Science and Technology (NTNU), NORWAY)
Ludovic Perret (Pierre and Marie Curie University - Paris, FRANCE)
Jean-Charles Fauge`re (Pierre and Marie Curie University - Paris, FRANCE)
Svein Johan Knapskog (The Norwegian University of Science and Technology (NTNU), NORWAY)
Smile Markovski (Ss Cyril and Methodius University - Skopje, MAKEDONIJA)

Implementations:
ref 0 / 9 / 0
chevron_right
mqqsig192
Description
mqqsig192 - 192-bit signatures based on Multivariate-Quadratic-Quasigroups
Designers
Danilo Gligoroski (The Norwegian University of Science and Technology (NTNU), NORWAY)
Rune Steinsmo Ødegard (The Norwegian University of Science and Technology (NTNU), NORWAY)
Rune Erlend Jensen (The Norwegian University of Science and Technology (NTNU), NORWAY)
Ludovic Perret (Pierre and Marie Curie University - Paris, FRANCE)
Jean-Charles Fauge`re (Pierre and Marie Curie University - Paris, FRANCE)
Svein Johan Knapskog (The Norwegian University of Science and Technology (NTNU), NORWAY)
Smile Markovski (Ss Cyril and Methodius University - Skopje, MAKEDONIJA)

Implementations:
ref 0 / 9 / 0
chevron_right
mqqsig224
Description
mqqsig224 - 224-bit signatures based on Multivariate-Quadratic-Quasigroups
Designers
Danilo Gligoroski (The Norwegian University of Science and Technology (NTNU), NORWAY)
Rune Steinsmo Ødegard (The Norwegian University of Science and Technology (NTNU), NORWAY)
Rune Erlend Jensen (The Norwegian University of Science and Technology (NTNU), NORWAY)
Ludovic Perret (Pierre and Marie Curie University - Paris, FRANCE)
Jean-Charles Fauge`re (Pierre and Marie Curie University - Paris, FRANCE)
Svein Johan Knapskog (The Norwegian University of Science and Technology (NTNU), NORWAY)
Smile Markovski (Ss Cyril and Methodius University - Skopje, MAKEDONIJA)

Implementations:
ref 0 / 9 / 0
chevron_right
mqqsig256
Description
mqqsig256 - 256-bit signatures based on Multivariate-Quadratic-Quasigroups
Designers
Danilo Gligoroski (The Norwegian University of Science and Technology (NTNU), NORWAY)
Rune Steinsmo Ødegard (The Norwegian University of Science and Technology (NTNU), NORWAY)
Rune Erlend Jensen (The Norwegian University of Science and Technology (NTNU), NORWAY)
Ludovic Perret (Pierre and Marie Curie University - Paris, FRANCE)
Jean-Charles Fauge`re (Pierre and Marie Curie University - Paris, FRANCE)
Svein Johan Knapskog (The Norwegian University of Science and Technology (NTNU), NORWAY)
Smile Markovski (Ss Cyril and Methodius University - Skopje, MAKEDONIJA)

Implementations:
ref 0 / 9 / 0
chevron_right
ntrumls401x
Description
Parameters N: 401, q: 2^18, p: 3. Estimated security: 112 bits
Designers
Jeff Hoffstein
Jill Pipher
John M. Schanck
Joseph H. Silverman
William Whyte
Implementations:
ref 0 / 9 / 0
chevron_right
ntrumls439x
Description
Parameters N: 439, q: 2^19, p: 3. Estimated security: 128 bits
Designers
Jeff Hoffstein
Jill Pipher
John M. Schanck
Joseph H. Silverman
William Whyte
Implementations:
ref 0 / 9 / 0
chevron_right
ntrumls593x
Description
Parameters N: 593, q: 2^19, p: 3. Estimated security: 192 bits
Designers
Jeff Hoffstein
Jill Pipher
John M. Schanck
Joseph H. Silverman
William Whyte
Implementations:
ref 0 / 9 / 0
chevron_right
ntrumls743x
Description
Parameters N: 743, q: 2^20, p: 3. Estimated security: 256 bits
Designers
Jeff Hoffstein
Jill Pipher
John M. Schanck
Joseph H. Silverman
William Whyte
Implementations:
ref 0 / 9 / 0
chevron_right
pass769
Implementations:
ref-karatsuba 0 / 9 / 0
chevron_right
pass863
Implementations:
ref-karatsuba 0 / 9 / 0
chevron_right
pflash1
Description
C*- with a prefix over GF16 designed to match SFLASH
Designers
Jintai Ding
Bo-Yin Yang
Implementations:
ref 0 / 4 / 0
chevron_right
picnicl1fs
Description
Picnic-FS L1
Designers
Melissa Chase (Microsoft Research)
David Derler (Graz University of Technology)
Steven Goldfeder (Princeton University)
Claudio Orlandi (Aarhus University)
Sebastian Ramacher (Graz University of Technology)
Christian Rechberger (Graz University of Technology)
Daniel Slamanig (AIT Austrian Institute of Technology)
Greg Zaverucha (Microsoft Research)
Implementations:
optimizedct/c 0 / 9 / 0
chevron_right optimizedm4rm/c 0 / 9 / 0
chevron_right ref 0 / 0 / 9
chevron_right
picnicl1ur
Description
Picnic-UR L1
Designers
Melissa Chase (Microsoft Research)
David Derler (Graz University of Technology)
Steven Goldfeder (Princeton University)
Claudio Orlandi (Aarhus University)
Sebastian Ramacher (Graz University of Technology)
Christian Rechberger (Graz University of Technology)
Daniel Slamanig (AIT Austrian Institute of Technology)
Greg Zaverucha (Microsoft Research)
Implementations:
optimizedct/c 0 / 9 / 0
chevron_right optimizedm4rm/c 0 / 9 / 0
chevron_right ref 0 / 0 / 9
chevron_right
picnicl3fs
Description
Picnic-FS L3
Designers
Melissa Chase (Microsoft Research)
David Derler (Graz University of Technology)
Steven Goldfeder (Princeton University)
Claudio Orlandi (Aarhus University)
Sebastian Ramacher (Graz University of Technology)
Christian Rechberger (Graz University of Technology)
Daniel Slamanig (AIT Austrian Institute of Technology)
Greg Zaverucha (Microsoft Research)
Implementations:
optimizedct/c 0 / 9 / 0
chevron_right optimizedm4rm/c 0 / 9 / 0
chevron_right ref 0 / 0 / 9
chevron_right
picnicl3ur
Description
Picnic-UR L3
Designers
Melissa Chase (Microsoft Research)
David Derler (Graz University of Technology)
Steven Goldfeder (Princeton University)
Claudio Orlandi (Aarhus University)
Sebastian Ramacher (Graz University of Technology)
Christian Rechberger (Graz University of Technology)
Daniel Slamanig (AIT Austrian Institute of Technology)
Greg Zaverucha (Microsoft Research)
Implementations:
optimizedct/c 0 / 9 / 0
chevron_right optimizedm4rm/c 0 / 9 / 0
chevron_right ref 0 / 0 / 9
chevron_right
picnicl5fs
Description
Picnic-FS L5
Designers
Melissa Chase (Microsoft Research)
David Derler (Graz University of Technology)
Steven Goldfeder (Princeton University)
Claudio Orlandi (Aarhus University)
Sebastian Ramacher (Graz University of Technology)
Christian Rechberger (Graz University of Technology)
Daniel Slamanig (AIT Austrian Institute of Technology)
Greg Zaverucha (Microsoft Research)
Implementations:
optimizedct/c 0 / 9 / 0
chevron_right optimizedm4rm/c 0 / 9 / 0
chevron_right ref 0 / 0 / 9
chevron_right
picnicl5ur
Description
Picnic-UR L5
Designers
Melissa Chase (Microsoft Research)
David Derler (Graz University of Technology)
Steven Goldfeder (Princeton University)
Claudio Orlandi (Aarhus University)
Sebastian Ramacher (Graz University of Technology)
Christian Rechberger (Graz University of Technology)
Daniel Slamanig (AIT Austrian Institute of Technology)
Greg Zaverucha (Microsoft Research)
Implementations:
optimizedct/c 0 / 9 / 0
chevron_right optimizedm4rm/c 0 / 9 / 0
chevron_right optimizedm4rm/sse2 0 / 9 / 0
chevron_right ref 0 / 0 / 9
chevron_right
pqrsa15
Implementations:
ref 0 / 9 / 0
chevron_right
qtesla1
Implementations:
ref 0 / 9 / 0
chevron_right
qtesla128
Implementations:
ref 0 / 9 / 0
chevron_right
qtesla192
Implementations:
ref 0 / 9 / 0
chevron_right
qtesla1p
Implementations:
ref 0 / 9 / 0
chevron_right
qtesla256
Implementations:
ref 0 / 9 / 0
chevron_right
qtesla3f
Implementations:
ref 0 / 9 / 0
chevron_right
qtesla3p
Implementations:
ref 0 / 9 / 0
chevron_right
qtesla3s
Implementations:
ref 0 / 9 / 0
chevron_right
rainbow
Description
Rainbow multivariate-quadratic signatures
Designers
Jintai Ding (University of Cincinnati)
Dieter Schmidt (University of Cincinnati)
Implementations:
ref 0 / 9 / 0
chevron_right
rainbow1a
Implementations:
portable 0 / 9 / 0
chevron_right ref 0 / 7 / 2
chevron_right
rainbow1b
Implementations:
portable 0 / 9 / 0
chevron_right ref 0 / 9 / 0
chevron_right
rainbow1c
Implementations:
portable 0 / 6 / 3
chevron_right ref 0 / 3 / 6
chevron_right
rainbow3b
Implementations:
portable 0 / 6 / 3
chevron_right ref 0 / 6 / 3
chevron_right
rainbow3c
Implementations:
portable 0 / 0 / 9
chevron_right ref 0 / 0 / 9
chevron_right
rainbow4a
Implementations:
portable 0 / 7 / 2
chevron_right ref 0 / 0 / 9
chevron_right
rainbow5640
Description
Rainbow over GF31
(31,16,20,20)
Designers
Jintai Ding
Bo-Yin Yang
Implementations:
ref 0 / 6 / 3
chevron_right
rainbow5c
Implementations:
portable 0 / 0 / 9
chevron_right ref 0 / 0 / 9
chevron_right
rainbow6440
Description
Rainbow over GF31
(31,26,20,20)
Designers
Jintai Ding
Bo-Yin Yang
Implementations:
ref 0 / 5 / 4
chevron_right
rainbow6a
Implementations:
portable 0 / 0 / 9
chevron_right ref 0 / 0 / 9
chevron_right
rainbow6b
Implementations:
portable 0 / 0 / 9
chevron_right ref 0 / 0 / 9
chevron_right
rainbowbinary16242020
Description
Rainbow over GF16
(16,24,20,20)
Designers
Bo-Yin Yang
Implementations:
ref 0 / 5 / 0
chevron_right
rainbowbinary256181212
Description
Rainbow over GF256
(256,18,12,12)
Designers
Bo-Yin Yang
Implementations:
ref 0 / 5 / 0
chevron_right
rwb0fuz1024
Description
1024-bit Rabin-Williams signatures with compression
Designers
Adam Langley (Google)
Implementations:
gmp 0 / 9 / 0
chevron_right
sflashv2
Description
SFLASHv2 multivariate-quadratic signatures
Designers
Louis Goubin (Université de Versailles)
Nicolas Courtois (University College London)
Thomas Icart (École Polytechnique)
Implementations:
ref 0 / 9 / 0
chevron_right
sphincs256
Designers
Daniel J. Bernstein1
Daira Hopwood
Andreas Hülsing
Tanja Lange
Ruben Niederhagen
Louiza Papachristodoulou
Peter Schwabe
Zooko Wilcox O'Hearn
Implementations:
avx2 0 / 0 / 5
chevron_right ref 0 / 5 / 4
chevron_right
sphincsf128haraka
Implementations:
aesni 0 / 0 / 5
chevron_right ref 0 / 9 / 0
chevron_right
sphincsf128sha256
Implementations:
avx2 0 / 5 / 0
chevron_right ref 0 / 0 / 9
chevron_right
sphincsf128shake256
Implementations:
avx2 0 / 4 / 1
chevron_right ref 0 / 8 / 1
chevron_right
sphincsf192haraka
Implementations:
aesni 0 / 0 / 5
chevron_right ref 0 / 9 / 0
chevron_right
sphincsf192sha256
Implementations:
avx2 0 / 5 / 0
chevron_right ref 0 / 0 / 9
chevron_right
sphincsf192shake256
Implementations:
avx2 0 / 4 / 1
chevron_right ref 0 / 8 / 1
chevron_right
sphincsf256haraka
Implementations:
aesni 0 / 0 / 5
chevron_right ref 0 / 9 / 0
chevron_right
sphincsf256sha256
Implementations:
avx2 0 / 5 / 0
chevron_right ref 0 / 0 / 9
chevron_right
sphincsf256shake256
Implementations:
avx2 0 / 4 / 1
chevron_right ref 0 / 8 / 1
chevron_right
sphincss128haraka
Implementations:
aesni 0 / 0 / 5
chevron_right ref 0 / 0 / 9
chevron_right
sphincss128sha256
Implementations:
avx2 0 / 5 / 0
chevron_right ref 0 / 0 / 9
chevron_right
sphincss128shake256
Implementations:
avx2 0 / 2 / 3
chevron_right ref 0 / 7 / 2
chevron_right
sphincss192haraka
Implementations:
aesni 0 / 0 / 5
chevron_right ref 0 / 0 / 9
chevron_right
sphincss192sha256
Implementations:
avx2 0 / 1 / 4
chevron_right ref 0 / 0 / 9
chevron_right
sphincss192shake256
Implementations:
avx2 0 / 0 / 5
chevron_right ref 0 / 0 / 9
chevron_right
sphincss256haraka
Implementations:
aesni 0 / 0 / 5
chevron_right ref 0 / 0 / 9
chevron_right
sphincss256sha256
Implementations:
avx2 0 / 0 / 5
chevron_right ref 0 / 0 / 9
chevron_right
sphincss256shake256
Implementations:
avx2 0 / 0 / 5
chevron_right ref 0 / 0 / 9
chevron_right
tts6440
Description
Rainbow over GF16
Designers
Bo-Yin Yang
Implementations:
ref 0 / 8 / 1
chevron_right