About Wave
Wave is a post-quantum signature scheme based on hard problems in coding theory.
Performance
Signature length and verification speed results for Wave instances. Timings count millions of cycles used on average by the (non-optimized) reference implementation, running on an Intel Core i5-1135G7 platform at 2.40GHz. See the Supporting Documentation for more detailed figures.
| Wave instance | Wave[822] | Wave[1249] | Wave[1644] |
|---|---|---|---|
| Post-quantum security target | Level I | Level III | Level V |
| Signature length1 (Bytes) | 822 | 1249 | 1644 |
| Public key size (Bytes) | 3,677,390 | 7,867,598 | 13,632,308 |
| Key generation (MCycles) | 14,468 | 47,222 | 108,642 |
| Signing (MCycles) | 1,161 | 3,507 | 7,397 |
| Verification (MCycles) | 205.8 | 464.1 | 813.3 |
| Verification2 (MCycles) | 1.231 | 2.580 | 4.329 |
2Verification where the public key is pre-loaded in bitsliced format, and does not require conversion from the transport format.
Supporting Documentation
The supporting documentation of Wave can be found here.Implementation
Our code is is written in pure portable C99, and not optimized for any specific architecture; in particular, it does not take advantage of vectorization such as Intel AVX instructions. The code is available in the git repository: GitHub
Known Answer Tests - KAT
We provide the KAT in 3 different files for each of the instances.
Wave822 - PQCsignKAT_18900.rsp (700Mb) - Sha256sum:
ace94f3e8e1f692632758decb5471e7408bb7669f4d3a59647046e20bb0404b5
Wave1249 - PQCsignKAT_27629.rsp (1.6Gb) - Sha256sum:
75e85be5bdcf30fcbdc898ee7d84a2475cf917af06c1349eb9ded34605798e17
Wave1644 - PQCsignKAT_36359.rsp (2.9Gb) - Sha256sum:
e67a83c9abdf143b4ab01ff5f2692d54534a3de1c3943165d907f077cee07356
Authors
- Gustavo Banegas
Qualcomm, France
- Pierre Karpman
University of Grenoble, France
- Kévin Carrier
CY Cergy-Paris University, France
- Johanna Loyer
Inria, France
- André Chailloux
Inria, France
- Ruben Niederhagen
Academia Sinica, Taiwan, and University of Southern Denmark, Denmark
- Alain Couvreur
Inria, and Laboratoire d'Informatique de l'École polytechnique (LIX), UMR 7161, CNRS, Insitut Polytechnique de Paris, Palaiseau, France
- Nicolas Sendrier
Inria, France
- Thomas Debris-Alazard
Inria, and Laboratoire d'Informatique de l'École polytechnique (LIX), UMR 7161, CNRS, Insitut Polytechnique de Paris, Palaiseau, France
- Benjamin Smith
Inria, and Laboratoire d'Informatique de l'École polytechnique (LIX), UMR 7161, CNRS, Insitut Polytechnique de Paris, Palaiseau, France
- Philippe Gaborit
University of Limoges, France
- Jean-Pierre Tillich
Inria, France
Related works
-
Nicolas Sendrier
Wave Parameter Selection -
Gustavo Banegas, Thomas Debris-Alazard, Milena Nedeljković and Benjamin Smith
Wavelet: code-based postquantum signatures with fast verification on microcontrollers -
André Chailloux and Thomas Debris-Alazard
Tight and optimal reductions for signatures based on average trapdoor preimage sampleable functions and applications to code-based signatures -
Thomas Debris-Alazard, Nicolas Sendrier and Jean-Pierre Tillich
Wave: a new family of trapdoor one-way preimage sampleable functions based on codes -
Rémi Bricout, André Chailloux, Thomas Debris-Alazard and Matthieu Lequesne
Ternary syndrome decoding with large weights
Contact
The Wave team can be contacted through the following email: wave@contact.
Postal Address:
Inria Saclay
1 Rue Honoré d'Estienne d'Orves, 91120 Palaiseau, France.