core properties
- Very compact keys and signatures.
- Confident tuning of security parameters.
- No longer slow!
- A complex signing procedure.
- The coolest team!
-- sizes --
| parameter set | public keys | signatures |
|---|---|---|
| NIST ‑ Ⅰ | 65 bytes | 148 bytes |
| NIST ‑ Ⅲ | 97 bytes | 224 bytes |
| NIST ‑ Ⅴ | 129 bytes | 292 bytes |
-- performance --
Cycle counts for an optimized implementation using platform-specific assembly running on an Intel Raptor Lake CPU:
| parameter set | keygen | signing | verifying |
|---|---|---|---|
| NIST ‑ Ⅰ | 43.3 megacycles | 101.6 megacycles | 5.1 megacycles |
| NIST ‑ Ⅲ | 134.0 megacycles | 309.2 megacycles | 18.6 megacycles |
| NIST ‑ Ⅴ | 212.0 megacycles | 507.5 megacycles | 35.7 megacycles |
Cycle counts for a pure C implementation running on an Intel Raptor Lake CPU:
| parameter set | keygen | signing | verifying |
|---|---|---|---|
| NIST ‑ Ⅰ | 84.4 megacycles | 203.1 megacycles | 11.3 megacycles |
| NIST ‑ Ⅲ | 227.9 megacycles | 548.9 megacycles | 30.5 megacycles |
| NIST ‑ Ⅴ | 402.6 megacycles | 1021.0 megacycles | 62.2 megacycles |
Performance data for verification only using a pure C implementation, running on an ARM Cortex‑M4 CPU:
| parameter set | clock cycles | stack usage | code size |
|---|---|---|---|
| NIST ‑ Ⅰ | 123 megacycles | 31 kilobytes | 40 kilobytes |
| NIST ‑ Ⅲ | 375 megacycles | 50 kilobytes | 44 kilobytes |
| NIST ‑ Ⅴ | 751 megacycles | 64 kilobytes | 46 kilobytes |
resources
-- NIST submission --
specification
implementation
- implementation (version under continuous development)
- implementation (version 2.0 from 2025-02-05)
- implementation (version 1.0 from 2023-06-01)
-- papers --
HD-based
-
SQIsign2D‑West: The Fast, the Small, and the Safer
Andrea Basso, Pierrick Dartois, Luca De Feo, Antonin Leroux, Luciano Maino, Giacomo Pope, Damien Robert, and Benjamin Wesolowski (2024)
-
SQIsign2D‑East: A New Signature Scheme Using 2-dimensional Isogenies
Kohei Nakagawa and Hiroshi Onuki (2024)
-
SQIPrime: A dimension 2 variant of SQISignHD with non-smooth challenge isogenies
Max Duparc and Tako Boris Fouotsa (2024)
-
SQIsignHD: New Dimensions in Cryptography
Pierrick Dartois, Antonin Leroux, Damien Robert, and Benjamin Wesolowski (2023)
KLPT-based
-
New algorithms for the Deuring correspondence: Towards practical and secure SQISign signatures
Luca De Feo, Antonin Leroux, Patrick Longa, and Benjamin Wesolowski (2022)
-
SQISign: compact post-quantum signatures from quaternions and isogenies
Luca De Feo, David Kohel, Antonin Leroux, Christophe Petit, and Benjamin Wesolowski (2020)
contributors
-- authors --
(Alphabetical order.)
- Marius A. Aardal Aarhus University, Denmark
- Gora Adj Technology Innovation Institute, UAE
- Diego F. Aranha Aarhus University, Denmark
- Andrea Basso IBM Research Europe, Switzerland
- Isaac Andrés Canales Martínez Technology Innovation Institute, UAE
- Jorge Chávez-Saab Technology Innovation Institute, UAE
- Maria Corte-Real Santos CNRS and ENS de Lyon, France, previously University College London, UK
- Pierrick Dartois Bordeaux University Inria Center, France
- Luca De Feo IBM Research Europe, Switzerland
- Max Duparc École Polytechnique Fédérale de Lausanne, Switzerland
- Jonathan Komada Eriksen KU Leuven, Belgium, previously NTNU, Norway
- Tako Boris Fouotsa École Polytechnique Fédérale de Lausanne, Switzerland
- Décio Luiz Gazzoni Filho State University of Londrina, Brazil
- Basil Hess IBM Research Europe, Switzerland
- David Kohel Institut de Mathématiques de Marseille, Aix-Marseille University, France
- Antonin Leroux DGA-MI, Bruz, France and Université de Rennes, France
- Patrick Longa Microsoft Research, USA
- Luciano Maino University of Bristol, UK
- Michael Meyer University of Regensburg, Germany
- Kohei Nakagawa NTT Social Informatics Laboratories, Japan
- Hiroshi Onuki University of Tokyo, Japan
- Lorenz Panny Technische Universität München, Germany, previously Academia Sinica, Taiwan
- Sikhar Patranabis IBM Research India
- Christophe Petit Université libre de Bruxelles, Belgium and University of Birmingham, UK
- Giacomo Pope NCC Group, UK and University of Bristol, UK
- Krijn Reijnders Radboud University Nijmegen, Netherlands
- Damien Robert Bordeaux University Inria Center, France
- Francisco Rodríguez Henríquez Technology Innovation Institute, UAE
- Sina Schaeffler IBM Research Europe and ETH Zürich, Switzerland
- Benjamin Wesolowski CNRS and ENS de Lyon, France
-- funding --
- UK EPSRC grant EP/S022503/1
- European Research Council, grant No. 101116169 (AGATHA CRYPTY)
- German Research Foundation (DFG) – SFB 1119 – 236615297
- German Federal Ministry of Education and Research (BMBF), project 6G-RIC (ID 16KISK033)
- Academia Sinica Investigator Award AS‑IA‑109‑M01
- France 2030 program, grant agreement No. ANR-22-PETQ-0008 PQ-TLS
- Agence Nationale de la Recherche, grant ANR MELODIA (ANR-20-CE40-0013)
- Agence Nationale de la Recherche, grant ANR CIAO (ANR-19-CE48-0008)
- European Research Council (ERC) under the EU's Horizon 2020 research and innovation programme, ISOCRYPT (101020788)
- Danish Independent Research Council, grant No. 1026-00350B (RENAIS)
- Swiss National Science Foundation (SNSF) Consolidator Grant no. 213766 (CryptonIs)