In hash-based cryptography, the Merkle signature scheme is a digital signature scheme based on Merkle trees (also called hash trees) and one-time signatures such as the Lamport signature scheme. It was developed by Ralph Merkle in the late 1970s[1] and is an alternative to traditional digital signatures such as the Digital Signature Algorithm or RSA. NIST has approved specific variants of the Merkle signature scheme in 2020.[2]
An advantage of the Merkle signature scheme is that it is believed to be resistant against attacks by quantum computers. The traditional public key algorithms, such as RSA and ElGamal would become insecure if an effective quantum computer could be built (due to Shor's algorithm). The Merkle signature scheme, however, only depends on the existence of secure hash functions. This makes the Merkle signature scheme very adjustable and resistant to quantum computer-based attacks. The Merkle signature is a one time signature with finite signing potential. The work of Moni Naor and Moti Yung on signature based one-way permutations and functions (and the invention of universal one-way hash functions) gives a way to extend a Merkle-like signature to a complete signature scheme.[3]
^Merkle, Ralph (1979). "Secrecy, authentication and public key systems" (PDF). Ph.D. Dissertation: 32–61.
^Naor, Moni; Yung, Moti (1989). "Universal One-Way Hash Functions and their Cryptographic Applications" (PDF). Symposium on Theory of Computing: 33–43.
and 22 Related for: Merkle signature scheme information
cryptography, the Merklesignaturescheme is a digital signaturescheme based on Merkle trees (also called hash trees) and one-time signatures such as the Lamport...
the number of leaf nodes itself. A Merkle tree is therefore an efficient example of a cryptographic commitment scheme, in which the root of the tree is...
The ElGamal signaturescheme is a digital signaturescheme which is based on the difficulty of computing discrete logarithms. It was described by Taher...
XMSS may refer to: Extended Merklesignaturescheme, a type of hash-based cryptography Xinmin Secondary School, a secondary school in Hougang, Singapore...
A digital signature is a mathematical scheme for verifying the authenticity of digital messages or documents. A valid digital signature on a message gives...
parameters SHA-2 with 384 or 512 bits eXtended MerkleSignatureScheme (XMSS) and Leighton-Micali Signatures (LMS) with all parameters approved, with SHA256/192...
A BLS digital signature, also known as Boneh–Lynn–Shacham (BLS), is a cryptographic signaturescheme which allows a user to verify that a signer is authentic...
cryptography, a Lamport signature or Lamport one-time signaturescheme is a method for constructing a digital signature. Lamport signatures can be built from...
Schnorr signature is a digital signature produced by the Schnorr signature algorithm that was described by Claus Schnorr. It is a digital signaturescheme known...
undergraduate, Merkle devised Merkle's Puzzles, a scheme for communication over an insecure channel, as part of a class project. The scheme is now recognized...
Association for Cryptologic Research. Becker, Georg (2008-07-18). "MerkleSignatureSchemes, Merkle Trees and Their Cryptanalysis" (PDF). Ruhr-Universität Bochum...
and ElGamal signatureschemes.: 486 The National Institute of Standards and Technology (NIST) proposed DSA for use in their Digital Signature Standard (DSS)...
cryptography, the Elliptic Curve Digital Signature Algorithm (ECDSA) offers a variant of the Digital Signature Algorithm (DSA) which uses elliptic-curve...
BLISS (short for Bimodal Lattice SignatureScheme) is a digital signaturescheme proposed by Léo Ducas, Alain Durmus, Tancrède Lepoint and Vadim Lyubashevsky...
Diffie-Hellman, [Elliptic-curve Diffie–Hellman] ECDH, and [Elliptic Curve Digital Signature Algorithm] ECDSA) are all vulnerable to attack by a sufficiently large...
applications of the function F. Note that some signature standards (like Extended Merklesignaturescheme, XMSS) define w as the number of possible values...
from the Public Radio Satellite System CMSS, a variant of the Merklesignaturescheme CMS (disambiguation) This disambiguation page lists articles associated...
The blocks are arranged in a tree, as are their checksums (see Merklesignaturescheme). An advantage of copy-on-write is that, when ZFS writes new data...
the intractability hypothesis upon which this cryptosystem is based. The scheme is an additive homomorphic cryptosystem; this means that, given only the...
DNS Queries May 2016 Domain Name System RFC 8391 XMSS: eXtended MerkleSignatureScheme May 2018 Hash-based cryptography RFC 8392 CBOR Web Token (CWT)...
PGP, and other cryptosystems. The Digital Signature Algorithm (DSA) is a variant of the ElGamal signaturescheme, which should not be confused with ElGamal...