Commit 76de162
committed
Add ML-DSA-44, SHAKE256 algorithm identifiers
From discussions with cryptographers, the general consensus is ML-DSA-44
is sufficient for PQC signing, with smaller keys and signatures.
ML-DSA-65 and ML-DSA-87 will be primarily for specialized use cases,
e.g. gov't requirements.
Additionally, the witness network is likely to use ML-DSA-44.
Added the SHAKE256 hash algorithm identifier, though I'm not certain
it's actually needed because we'll only support the pure variant of
ML-DSA.
Updated the comment for LMS/LMS-OTS to state it should not be used at
all, as there are no clients that will support this.
Signed-off-by: Hayden <8418760+Hayden-IO@users.noreply.github.com>1 parent dbdded5 commit 76de162
File tree
7 files changed
+174
-116
lines changed- gen
- pb-go/common/v1
- pb-python/sigstore_protobuf_specs/dev/sigstore/common/v1
- pb-ruby/lib
- pb-rust/sigstore-protobuf-specs/src/generated
- pb-typescript/src/__generated__
- protos
7 files changed
+174
-116
lines changedSome generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
Lines changed: 16 additions & 9 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
0 commit comments