RE: Performance of XML Signatures.

I agree that we should start looking at this, however we need to verify that we can get standards based, interoperable implementations from international vendors that are properly vetted.  I know that MQQ is one of the hash function semi-finalists in the NIST competition.

http://www.sciencedaily.com/releases/2009/10/091031003511.htm

http://csrc.nist.gov/groups/ST/hash/sha-3/index.html

http://csrc.nist.gov/groups/ST/hash/sha-3/Round1/submissions_rnd1.html

http://csrc.nist.gov/groups/ST/hash/sha-3/Round1/documents/sha3_NISTIR7620.pdf 

I don't see much activity at the IETF or other standards organizations.  I have seen some data on fast implementations (e.g., Xylinx), however I haven't seen much on end-systems and low-end devices.

Regards, Cynthia


-----Original Message-----
From: public-xmlsec-request@w3.org [mailto:public-xmlsec-request@w3.org] On Behalf Of Chris Solc
Sent: Wednesday, November 18, 2009 8:39 AM
To: public-xmlsec@w3.org
Subject: Performance of XML Signatures.

If we are interested in improving the performance of processing XML Signatures we may want to look at using the MQQ signature algorithm.


Thwarting Cyber Criminal
Norwegian University of Science and Technology (10/30/09) 

Researchers at the Norwegian University of Science and Technology (NTNU) say they have developed a digital signature system that is 17,000 times faster than current systems used for verification and 10,000 times faster in providing a digital signature. They say the new system, MQQ, was developed as a way to address the biggest pitfalls in current data security systems. Existing systems, when used with smart card applications or at credit card payment terminals, are often slow, do not protect against quantum computing attacks, and have not been optimized for parallel processing. MQQ was developed using a trapdoor function, which is generated by quasigroup string transformations based on multivariate quadratic quasigroups. The researchers say that MQQ's security is enhanced by a signing speed that is 10,000 times faster than corresponding RSA and elliptical curves digital signatures. The researchers also say that MQQ is one of the first algorithms specially designed for parallel processing, which allows the system to benefit from the recent trends in multicore parallel processing. "Due to the nature of its design, MQQ is secure against quantum computing attacks," says NTNU professor Dailo Gligoroski. He says MQQ also has been found to be secure against all known multivariate quadratic attack methods.

View Full Article (http://www.alphagalileo.org/ViewItem.aspx?ItemId=62425&CultureCode=en)


Other Links on MQQ
http://adsabs.harvard.edu/abs/2008arXiv0808.0247G
http://events.iaik.tugraz.at/weworc09/9aa510c7c7aab1/abstracts/02.pdf
http://www.cdc.informatik.tu-darmstadt.de/reports/reports/MQQattack.pdf

Received on Tuesday, 8 December 2009 00:21:45 UTC