- From: Martin, Cynthia E. <cemartin@mitre.org>
- Date: Mon, 7 Dec 2009 19:21:12 -0500
- To: Chris Solc <csolc@adobe.com>, "public-xmlsec@w3.org" <public-xmlsec@w3.org>
I agree that we should start looking at this, however we need to verify that we can get standards based, interoperable implementations from international vendors that are properly vetted. I know that MQQ is one of the hash function semi-finalists in the NIST competition. http://www.sciencedaily.com/releases/2009/10/091031003511.htm http://csrc.nist.gov/groups/ST/hash/sha-3/index.html http://csrc.nist.gov/groups/ST/hash/sha-3/Round1/submissions_rnd1.html http://csrc.nist.gov/groups/ST/hash/sha-3/Round1/documents/sha3_NISTIR7620.pdf I don't see much activity at the IETF or other standards organizations. I have seen some data on fast implementations (e.g., Xylinx), however I haven't seen much on end-systems and low-end devices. Regards, Cynthia -----Original Message----- From: public-xmlsec-request@w3.org [mailto:public-xmlsec-request@w3.org] On Behalf Of Chris Solc Sent: Wednesday, November 18, 2009 8:39 AM To: public-xmlsec@w3.org Subject: Performance of XML Signatures. If we are interested in improving the performance of processing XML Signatures we may want to look at using the MQQ signature algorithm. Thwarting Cyber Criminal Norwegian University of Science and Technology (10/30/09) Researchers at the Norwegian University of Science and Technology (NTNU) say they have developed a digital signature system that is 17,000 times faster than current systems used for verification and 10,000 times faster in providing a digital signature. They say the new system, MQQ, was developed as a way to address the biggest pitfalls in current data security systems. Existing systems, when used with smart card applications or at credit card payment terminals, are often slow, do not protect against quantum computing attacks, and have not been optimized for parallel processing. MQQ was developed using a trapdoor function, which is generated by quasigroup string transformations based on multivariate quadratic quasigroups. The researchers say that MQQ's security is enhanced by a signing speed that is 10,000 times faster than corresponding RSA and elliptical curves digital signatures. The researchers also say that MQQ is one of the first algorithms specially designed for parallel processing, which allows the system to benefit from the recent trends in multicore parallel processing. "Due to the nature of its design, MQQ is secure against quantum computing attacks," says NTNU professor Dailo Gligoroski. He says MQQ also has been found to be secure against all known multivariate quadratic attack methods. View Full Article (http://www.alphagalileo.org/ViewItem.aspx?ItemId=62425&CultureCode=en) Other Links on MQQ http://adsabs.harvard.edu/abs/2008arXiv0808.0247G http://events.iaik.tugraz.at/weworc09/9aa510c7c7aab1/abstracts/02.pdf http://www.cdc.informatik.tu-darmstadt.de/reports/reports/MQQattack.pdf
Received on Tuesday, 8 December 2009 00:21:45 UTC