Open sungmin-net opened 3 weeks ago
Expanding on this question a bit, I'm also curious if pq-crystals is planning to implement both new entry points (ML-DSA.Sign and HashML-DSA.Sign) or if the plan is to really implement what the final spec is calling ML_DSA.Sign_internal. I have also heard some questions about the IntegerToBytes step in HashML-DSA.Sign. The implementation of IntegerToBytes results in a byte swap of the OID to little endian, which seems odd as ASN.1 is typically stored big endian. Any thoughts on that?
It looks like this was merged - https://github.com/pq-crystals/dilithium/commit/cf998be4ade0014565305d3635a7b8317f2d4bd0
The implementation has been updated to the final standard. It only includes the pure API for now and also not the internal function. I'll add support for the internal function (for KATs) and might add support for prehashing with shake128
Dear CRYSTALS,
First of all thank you for this sharing. Recently, I was told that final version of PQC standards published. Am I OK to use here's source code continuously after the final version publication?