Credentials Community,
Based on the need for crypto-agility and the need to enable
interoperability between solutions leveraging digital signatures to sign
and verify data in a post quantum world, we have begun incubating a work
item on the topic intended for development and hopeful standardization at
IETF. The group intends to cover serialization of signatures in JSON for
at least Dilithium, Falcon, and SPHINCS+ in a manner that will enable usage
of those signature schemes with JOSE, and with Verifiable Credentials
and/or DIDs.
Currently engaged with and committing to move this work forward are Google,
IBM, NXP, Utimaco, mesur.io, and Transmute. We also have support and
interest from AWS in seeing any NIST Signatures fully supported for use
with JSON.
The initial draft is located here:
https://mesur-io.github.io/post-quantum-signatures/draft-post-quantum-jose.html
and
active work is under way to describe Test Vectors, Falcon and SPHINCS+
This work will build on the work related to expression of Quantum Safe
Cryptographic Keys here:
https://www.ietf.org/id/draft-uni-qsckeys-00.html
and relates directly to expression of the signature schemes in
consideration at NIST:
https://csrc.nist.gov/projects/post-quantum-cryptography
Thanks,
Mike Prorock
CTO, Founder
https://mesur.io/