Organizer: Prof. Johannes Buchmann, Moritz Horsch
TLS is one of the most widely used security protocols on the internet, notably via HTTP. This talk addresses the integration of XMSS, a hash-based signature scheme currently undergoing standardisation, in the OpenSSL open source cryptographic library and its fork open-quantum-safe, which includes post-quantum key exchange algorithms.
XMSS is integrated both as a stand-alone signature scheme (in libcrypto) and as a component of post-quantum TLS cipher suites (in libssl). The integration encompasses abstraction layers and formats such as EVP, ASN.1 and X.509. OpenSSL architectural peculiarities that must be taken into account for any scheme integration endeavours are also discussed.