VAMPIRE	eBACS: ECRYPT Benchmarking of Cryptographic Systems	ECRYPT II

General information:	Introduction	eBASH	eBASC	eBAEAD	eBATS	SUPERCOP	XBX	Computers

How to submit new software:	Tips	hash	stream	aead	dh	kem	encrypt	sign

List of primitives measured:	lwc	sha3	hash	stream	lwc	caesar	aead	dh	kem	encrypt	sign

Measurements indexed by machine:	lwc	sha3	hash	stream	lwc	caesar	aead	dh	kem	encrypt	sign

List of subroutines:	verify	decode	encode	sort	core	hashblocks	scalarmult

List of public-key signature systems measured

eBATS (ECRYPT Benchmarking of Asymmetric Systems) is a project to measure the performance of public-key systems. This page focuses on public-key signatures; it lists the public-key signature systems covered by SUPERCOP. The page then lists implementations of these systems.

There is a separate page that lists machines and, for each machine, the measurements of these systems.

Designers and implementors interested in submitting new signature systems and new implementations of existing signature systems should read the call for submissions.

Which signature systems are measured?

Primitive	Description	Designers
`3icp`	3-invertible cycle with minus and prefix	Jintai Ding Christopher Wolf Bo-Yin Yang
`bls`	Boneh–Lynn–Shacham: Pairing-based short signatures	Michael Scott (Dublin City University)
`bluegemss128`
`bluegemss192`
`bluegemss256`
`bluegemss128v2`	BlueGeMSS128 (2020.04 version)
`bluegemss192v2`	BlueGeMSS192 (2020.04 version)
`bluegemss256v2`	BlueGeMSS256 (2020.04 version)
`dilithium2`	Dilithium, level 2 security parameters (NISTPQC round 3); was smaller round-2 level-2 Dilithium before supercop-20210125	Léo Ducas (CWI) Eike Kiltz (Ruhr-Universität Bochum) Tancrède Lepoint (Google) Vadim Lyubashevsky (IBM Research) Peter Schwabe (MPI Bochum) Gregor Seiler (IBM Research) Damien Stehlé (ENS de Lyon)
`dilithium3`	Dilithium, level 3 security parameters (NISTPQC round 3); was smaller round-2 level-3 Dilithium before supercop-20210125	Léo Ducas (CWI) Eike Kiltz (Ruhr-Universität Bochum) Tancrède Lepoint (Google) Vadim Lyubashevsky (IBM Research) Peter Schwabe (MPI Bochum) Gregor Seiler (IBM Research) Damien Stehlé (ENS de Lyon)
`dilithium4`	Dilithium, very high security parameters (NISTPQC round 2)
`dilithium5`	Dilithium, level 5 security parameters (NISTPQC round 3)	Léo Ducas (CWI) Eike Kiltz (Ruhr-Universität Bochum) Tancrède Lepoint (Google) Vadim Lyubashevsky (IBM Research) Peter Schwabe (MPI Bochum) Gregor Seiler (IBM Research) Damien Stehlé (ENS de Lyon)
`dilithium2aes`	Dilithium-AES, level 2 security parameters (NISTPQC round 3); was smaller round-2 level-2 Dilithium before supercop-20210125	Léo Ducas (CWI) Eike Kiltz (Ruhr-Universität Bochum) Tancrède Lepoint (Google) Vadim Lyubashevsky (IBM Research) Peter Schwabe (MPI Bochum) Gregor Seiler (IBM Research) Damien Stehlé (ENS de Lyon)
`dilithium3aes`	Dilithium-AES, level 3 security parameters (NISTPQC round 3); was smaller round-2 level-3 Dilithium before supercop-20210125	Léo Ducas (CWI) Eike Kiltz (Ruhr-Universität Bochum) Tancrède Lepoint (Google) Vadim Lyubashevsky (IBM Research) Peter Schwabe (MPI Bochum) Gregor Seiler (IBM Research) Damien Stehlé (ENS de Lyon)
`dilithium4aes`	Dilithium, very high security parameters (NISTPQC round 2)
`dilithium5aes`	Dilithium-AES, level 5 security parameters (NISTPQC round 3)	Léo Ducas (CWI) Eike Kiltz (Ruhr-Universität Bochum) Tancrède Lepoint (Google) Vadim Lyubashevsky (IBM Research) Peter Schwabe (MPI Bochum) Gregor Seiler (IBM Research) Damien Stehlé (ENS de Lyon)
`donald512`	DSA signatures using a 512-bit prime	Example for eBATS
`donald1024`	DSA signatures using a 1024-bit prime	Example for eBATS
`donald2048`	DSA signatures using a 2048-bit prime	Example for eBATS
`ecdonaldb163`	ECDSA signatures using the standard NIST B-163 elliptic curve, a curve over a field of size 2^163	Example for eBATS
`ecdonaldb233`	ECDSA signatures using the standard NIST B-233 elliptic curve, a curve over a field of size 2^233	Example for eBATS
`ecdonaldb283`	ECDSA signatures using the standard NIST B-283 elliptic curve, a curve over a field of size 2^283	Example for eBATS
`ecdonaldb409`	ECDSA signatures using the standard NIST B-409 elliptic curve, a curve over a field of size 2^409	Example for eBATS
`ecdonaldb571`	ECDSA signatures using the standard NIST B-571 elliptic curve, a curve over a field of size 2^571	Example for eBATS
`ecdonaldk163`	ECDSA signatures using the standard NIST K-163 elliptic curve, a Koblitz curve over a field of size 2^163	Example for eBATS
`ecdonaldk233`	ECDSA signatures using the standard NIST K-233 elliptic curve, a Koblitz curve over a field of size 2^233	Example for eBATS
`ecdonaldk283`	ECDSA signatures using the standard NIST K-283 elliptic curve, a Koblitz curve over a field of size 2^283	Example for eBATS
`ecdonaldk409`	ECDSA signatures using the standard NIST K-409 elliptic curve, a Koblitz curve over a field of size 2^409	Example for eBATS
`ecdonaldk571`	ECDSA signatures using the standard NIST K-571 elliptic curve, a Koblitz curve over a field of size 2^571	Example for eBATS
`ecdonaldp160`	ECDSA signatures using the standard SECP160R1 elliptic curve, a curve modulo the prime 2^160-2^31-1	Example for eBATS
`ecdonaldp192`	ECDSA signatures using the standard NIST P-192 elliptic curve, a curve modulo the prime 2^192-2^64-1	Example for eBATS
`ecdonaldp224`	ECDSA signatures using the standard NIST P-224 elliptic curve, a curve modulo the prime 2^224-2^96+1	Example for eBATS
`ecdonaldp256`	ECDSA signatures using the standard NIST P-256 elliptic curve, a curve modulo the prime 2^256-2^224+2^192+2^96-1	Example for eBATS
`ecdonaldp384`	ECDSA signatures using the standard NIST P-384 elliptic curve, a curve modulo the prime 2^384-2^128-2^96+2^32-1	Example for eBATS
`ecdonaldp521`	ECDSA signatures using the standard NIST P-521 elliptic curve, a curve modulo the prime 2^521-1	Example for eBATS
`ed25519`	EdDSA signatures using Curve25519	Daniel J. Bernstein Niels Duif Tanja Lange Peter Schwabe Bo-Yin Yang
`ed448goldilocks`	Ed448-Goldilocks sign and dh	Mike Hamburg
`edons128k08n72nu8l4mu3`	An alternative Edon-S signature scheme proposal in Category 2. Conjectured security requires computational resources comparable to or greater than those required for finding collisions in SHA256 - Category 2	Danilo Gligoroski
`edons128ref`	Reference proposal for signature scheme Edon-S128. Conjectured security requires computational resources comparable to or greater than those required for finding collisions in SHA256 - Category 2	Danilo Gligoroski
`falcon1024dyn`	Falcon-1024 (LDL tree dynamically rebuilt) (NISTPQC round 2)	Pierre-Alain Fouque Jeffrey Hoffstein Paul Kirchner Vadim Lyubashevsky Thomas Pornin Thomas Prest Thomas Ricosset Gregor Seiler William Whyte Zhenfei Zhang
`falcon1024tree`	Falcon-1024 (LDL tree computed at keygen time) (NISTPQC round 2)	Pierre-Alain Fouque Jeffrey Hoffstein Paul Kirchner Vadim Lyubashevsky Thomas Pornin Thomas Prest Thomas Ricosset Gregor Seiler William Whyte Zhenfei Zhang
`falcon512dyn`	Falcon-512 (LDL tree dynamically rebuilt) (NISTPQC round 2)	Pierre-Alain Fouque Jeffrey Hoffstein Paul Kirchner Vadim Lyubashevsky Thomas Pornin Thomas Prest Thomas Ricosset Gregor Seiler William Whyte Zhenfei Zhang
`falcon512tree`	Falcon-512 (LDL tree computed at keygen time) (NISTPQC round 2)	Pierre-Alain Fouque Jeffrey Hoffstein Paul Kirchner Vadim Lyubashevsky Thomas Pornin Thomas Prest Thomas Ricosset Gregor Seiler William Whyte Zhenfei Zhang
`fslwe25`	A signature function based on lattices, based on "Fiat-Shamir with aborts: Applications to lattices and factoring-based signatures" at Asiacrypt'09 from Vadim Lyubashevsky.
`fslwe37`	A signature function based on lattices, based on "Fiat-Shamir with aborts: Applications to lattices and factoring-based signatures" at Asiacrypt'09 from Vadim Lyubashevsky.
`fslwe47`	A signature function based on lattices, based on "Fiat-Shamir with aborts: Applications to lattices and factoring-based signatures" at Asiacrypt'09 from Vadim Lyubashevsky.
`fslwe69`	A signature function based on lattices, based on "Fiat-Shamir with aborts: Applications to lattices and factoring-based signatures" at Asiacrypt'09 from Vadim Lyubashevsky.
`gemss128`
`gemss192`
`gemss256`
`gemss128v2`	GeMSS128 (2020.04 version)
`gemss192v2`	GeMSS192 (2020.04 version)
`gemss256v2`	GeMSS256 (2020.04 version)
`gravitysphincsl`
`gravitysphincsm`
`gravitysphincss`
`gui184`
`gui312`
`gui448`
`hector`	Hyperelliptic Curve with Two-Rank One: Signatures using a genus-2 hyperelliptic curve of 2-rank 1 over a field of size 2^113	Peter Birkner (Technische Universiteit Eindhoven) Peter Schwabe (Technische Universiteit Eindhoven)
`lattisigns512`		Tim Güneysu Vadim Lyubashevsky Thomas Pöppelmann
`luov863256`	The LUOV signature scheme, with parameters for NIST security level 2.	Ward Beullens
`luov890351`	The LUOV signature scheme, with parameters for NIST security level 4.	Ward Beullens
`luov4849242`
`luov6468330`
`luov8117404pc`	The LUOV signature scheme, with parameters for NIST security level 5. This version does a precomputation on the secret and private key.	Ward Beullens
`luov863256pc`	The LUOV signature scheme, with parameters for NIST security level 2. This version does a precomputation on the secret and private key.	Ward Beullens
`luov890351pc`	The LUOV signature scheme, with parameters for NIST security level 5. This version does a precomputation on the secret and private key.	Ward Beullens
`luov8086399`
`luov8117404`	The LUOV signature scheme, with parameters for NIST security level 5.	Ward Beullens
`mqdss48`
`mqdss64`
`mqqsig160`	mqqsig160 - 160-bit signatures based on Multivariate-Quadratic-Quasigroups	Danilo Gligoroski (The Norwegian University of Science and Technology (NTNU), NORWAY) Rune Steinsmo Ødegard (The Norwegian University of Science and Technology (NTNU), NORWAY) Rune Erlend Jensen (The Norwegian University of Science and Technology (NTNU), NORWAY) Ludovic Perret (Pierre and Marie Curie University - Paris, FRANCE) Jean-Charles Fauge`re (Pierre and Marie Curie University - Paris, FRANCE) Svein Johan Knapskog (The Norwegian University of Science and Technology (NTNU), NORWAY) Smile Markovski (Ss Cyril and Methodius University - Skopje, MAKEDONIJA)
`mqqsig192`	mqqsig192 - 192-bit signatures based on Multivariate-Quadratic-Quasigroups	Danilo Gligoroski (The Norwegian University of Science and Technology (NTNU), NORWAY) Rune Steinsmo Ødegard (The Norwegian University of Science and Technology (NTNU), NORWAY) Rune Erlend Jensen (The Norwegian University of Science and Technology (NTNU), NORWAY) Ludovic Perret (Pierre and Marie Curie University - Paris, FRANCE) Jean-Charles Fauge`re (Pierre and Marie Curie University - Paris, FRANCE) Svein Johan Knapskog (The Norwegian University of Science and Technology (NTNU), NORWAY) Smile Markovski (Ss Cyril and Methodius University - Skopje, MAKEDONIJA)
`mqqsig224`	mqqsig224 - 224-bit signatures based on Multivariate-Quadratic-Quasigroups	Danilo Gligoroski (The Norwegian University of Science and Technology (NTNU), NORWAY) Rune Steinsmo Ødegard (The Norwegian University of Science and Technology (NTNU), NORWAY) Rune Erlend Jensen (The Norwegian University of Science and Technology (NTNU), NORWAY) Ludovic Perret (Pierre and Marie Curie University - Paris, FRANCE) Jean-Charles Fauge`re (Pierre and Marie Curie University - Paris, FRANCE) Svein Johan Knapskog (The Norwegian University of Science and Technology (NTNU), NORWAY) Smile Markovski (Ss Cyril and Methodius University - Skopje, MAKEDONIJA)
`mqqsig256`	mqqsig256 - 256-bit signatures based on Multivariate-Quadratic-Quasigroups	Danilo Gligoroski (The Norwegian University of Science and Technology (NTNU), NORWAY) Rune Steinsmo Ødegard (The Norwegian University of Science and Technology (NTNU), NORWAY) Rune Erlend Jensen (The Norwegian University of Science and Technology (NTNU), NORWAY) Ludovic Perret (Pierre and Marie Curie University - Paris, FRANCE) Jean-Charles Fauge`re (Pierre and Marie Curie University - Paris, FRANCE) Svein Johan Knapskog (The Norwegian University of Science and Technology (NTNU), NORWAY) Smile Markovski (Ss Cyril and Methodius University - Skopje, MAKEDONIJA)
`ntrumls401x`	Parameters N: 401, q: 2^18, p: 3. Estimated security: 112 bits	Jeff Hoffstein Jill Pipher John M. Schanck Joseph H. Silverman William Whyte
`ntrumls439x`	Parameters N: 439, q: 2^19, p: 3. Estimated security: 128 bits	Jeff Hoffstein Jill Pipher John M. Schanck Joseph H. Silverman William Whyte
`ntrumls593x`	Parameters N: 593, q: 2^19, p: 3. Estimated security: 192 bits	Jeff Hoffstein Jill Pipher John M. Schanck Joseph H. Silverman William Whyte
`ntrumls743x`	Parameters N: 743, q: 2^20, p: 3. Estimated security: 256 bits	Jeff Hoffstein Jill Pipher John M. Schanck Joseph H. Silverman William Whyte
`pass769`
`pass863`
`pflash1`	C*- with a prefix over GF16 designed to match SFLASH	Jintai Ding Bo-Yin Yang
`picnic2l1fs`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnic2l3fs`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnic2l5fs`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnic3l1`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnic3l3`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnic3l5`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnicl1fs`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnicl1full`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnicl1ur`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnicl3fs`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnicl3full`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnicl3ur`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnicl5fs`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnicl5full`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`picnicl5ur`		Melissa Chase (Microsoft Research) David Derler (DFINITY) Steven Goldfeder (Cornell Tech) Daniel Kales (Graz University of Technology) Jonathan Katz (University of Maryland) Vladimir Kolesnikov (Georgia Tech) Claudio Orlandi (Aarhus University) Sebastian Ramacher (AIT Austrian Institute of Technology) Christian Rechberger (Graz University of Technology) Daniel Slamanig (AIT Austrian Institute of Technology) Xiao Wang (Northwestern University) Greg Zaverucha (Microsoft Research)
`pqrsa15`
`qtesla1`
`qtesla128`
`qtesla192`
`qtesla256`
`qtesla1p`
`qtesla3f`
`qtesla3p`
`qtesla3s`
`rainbow`	Rainbow multivariate-quadratic signatures	Jintai Ding (University of Cincinnati) Dieter Schmidt (University of Cincinnati)
`rainbow5640`	Rainbow over GF31 (31,16,20,20)	Jintai Ding Bo-Yin Yang
`rainbow6440`	Rainbow over GF31 (31,26,20,20)	Jintai Ding Bo-Yin Yang
`rainbow181212`	Rainbow multivariate quadratic signature scheme wih parameter set (17, 12)(1, 12).
`rainbow1a`
`rainbow1aclassic363232`
`rainbow1acompres363232`
`rainbow1acyclicc363232`
`rainbow1b`
`rainbow1c`
`rainbow3b`
`rainbow3c`
`rainbow3cclassic683248`
`rainbow3ccompres683248`
`rainbow3ccyclicc683248`
`rainbow4a`
`rainbow5c`
`rainbow5cclassic963664`
`rainbow5ccompres963664`
`rainbow5ccyclicc963664`
`rainbow6a`
`rainbow6b`
`rainbowbinary16242020`	Rainbow over GF16 (16,24,20,20)	Bo-Yin Yang
`rainbowbinary256181212`	Rainbow over GF256 (256,18,12,12)	Bo-Yin Yang
`redgemss128`
`redgemss192`
`redgemss256`
`redgemss128v2`	RedGeMSS128 (2020.04 version)
`redgemss192v2`	RedGeMSS192 (2020.04 version)
`redgemss256v2`	RedGeMSS256 (2020.04 version)
`ronald512`	512-bit RSA signatures with message recovery	Example for eBATS
`ronald768`	768-bit RSA signatures with message recovery	Example for eBATS
`ronald1024`	1024-bit RSA signatures with message recovery	Example for eBATS
`ronald1536`	1536-bit RSA signatures with message recovery	Example for eBATS
`ronald2048`	2048-bit RSA signatures with message recovery	Example for eBATS
`ronald3072`	3072-bit RSA signatures with message recovery	Example for eBATS
`ronald4096`	4096-bit RSA signatures with message recovery	Example for eBATS
`rwb0fuz1024`	1024-bit Rabin-Williams signatures with compression	Adam Langley (Google)
`sflashv2`	SFLASHv2 multivariate-quadratic signatures	Louis Goubin (Université de Versailles) Nicolas Courtois (University College London) Thomas Icart (École Polytechnique)
`sphincs256`		Daniel J. Bernstein1 Daira Hopwood Andreas Hülsing Tanja Lange Ruben Niederhagen Louiza Papachristodoulou Peter Schwabe Zooko Wilcox O'Hearn
`sphincsf128harakarobust`	SPHINCS+-Haraka-128f-robust (NISTPQC round 2)
`sphincsf128harakasimple`	SPHINCS+-Haraka-128f-simple (NISTPQC round 2)
`sphincsf128sha256robust`	SPHINCS+-SHA-256-128f-robust (NISTPQC round 2)
`sphincsf128sha256simple`	SPHINCS+-SHA-256-128f-simple (NISTPQC round 2)
`sphincsf128shake256robust`	SPHINCS+-SHAKE256-128f-robust (NISTPQC round 2)
`sphincsf128shake256simple`	SPHINCS+-SHAKE256-128f-simple (NISTPQC round 2)
`sphincsf192harakarobust`	SPHINCS+-Haraka-192f-robust (NISTPQC round 2)
`sphincsf192harakasimple`	SPHINCS+-Haraka-192f-simple (NISTPQC round 2)
`sphincsf192sha256robust`	SPHINCS+-SHA-256-192f-robust (NISTPQC round 2)
`sphincsf192sha256simple`	SPHINCS+-SHA-256-192f-simple (NISTPQC round 2)
`sphincsf192shake256robust`	SPHINCS+-SHAKE256-192f-robust (NISTPQC round 2)
`sphincsf192shake256simple`	SPHINCS+-SHAKE256-192f-simple (NISTPQC round 2)
`sphincsf256harakarobust`	SPHINCS+-Haraka-256f-robust (NISTPQC round 2)
`sphincsf256harakasimple`	SPHINCS+-Haraka-256f-simple (NISTPQC round 2)
`sphincsf256sha256robust`	SPHINCS+-SHA-256-256f-robust (NISTPQC round 2)
`sphincsf256sha256simple`	SPHINCS+-SHA-256-256f-simple (NISTPQC round 2)
`sphincsf256shake256robust`	SPHINCS+-SHAKE256-256f-robust (NISTPQC round 2)
`sphincsf256shake256simple`	SPHINCS+-SHAKE256-256f-simple (NISTPQC round 2)
`sphincss128harakarobust`	SPHINCS+-Haraka-128s-robust (NISTPQC round 2)
`sphincss128harakasimple`	SPHINCS+-Haraka-128s-simple (NISTPQC round 2)
`sphincss128sha256robust`	SPHINCS+-SHA-256-128s-robust (NISTPQC round 2)
`sphincss128sha256simple`	SPHINCS+-SHA-256-128s-simple (NISTPQC round 2)
`sphincss128shake256robust`	SPHINCS+-SHAKE256-128s-robust (NISTPQC round 2)
`sphincss128shake256simple`	SPHINCS+-SHAKE256-128s-simple (NISTPQC round 2)
`sphincss192harakarobust`	SPHINCS+-Haraka-192s-robust (NISTPQC round 2)
`sphincss192harakasimple`	SPHINCS+-Haraka-192s-simple (NISTPQC round 2)
`sphincss192sha256robust`	SPHINCS+-SHA-256-192s-robust (NISTPQC round 2)
`sphincss192sha256simple`	SPHINCS+-SHA-256-192s-simple (NISTPQC round 2)
`sphincss192shake256robust`	SPHINCS+-SHAKE256-192s-robust (NISTPQC round 2)
`sphincss192shake256simple`	SPHINCS+-SHAKE256-192s-simple (NISTPQC round 2)
`sphincss256harakarobust`	SPHINCS+-Haraka-256s-robust (NISTPQC round 2)
`sphincss256harakasimple`	SPHINCS+-Haraka-256s-simple (NISTPQC round 2)
`sphincss256sha256robust`	SPHINCS+-SHA-256-256s-robust (NISTPQC round 2)
`sphincss256sha256simple`	SPHINCS+-SHA-256-256s-simple (NISTPQC round 2)
`sphincss256shake256robust`	SPHINCS+-SHAKE256-256s-robust (NISTPQC round 2)
`sphincss256shake256simple`	SPHINCS+-SHAKE256-256s-simple (NISTPQC round 2)
`tts6440`	Rainbow over GF16	Bo-Yin Yang

Implementations

Primitive	Implementation	Authors
`3icp`	`ref`	Frost Yu-Shuang Li Tien-Ren Chen Ming-Shing Chen
`bls`	`ref`	Michael Scott, Dublin City University
`bluegemss128`	`opt`
`bluegemss128`	`ref`
`bluegemss128`	`skylake`
`bluegemss192`	`opt`
`bluegemss192`	`ref`
`bluegemss192`	`skylake`
`bluegemss256`	`opt`
`bluegemss256`	`ref`
`bluegemss256`	`skylake`
`bluegemss128v2`	`opt`
`bluegemss128v2`	`ref`
`bluegemss128v2`	`skylake`
`bluegemss192v2`	`opt`
`bluegemss192v2`	`ref`
`bluegemss192v2`	`skylake`
`bluegemss256v2`	`opt`
`bluegemss256v2`	`ref`
`bluegemss256v2`	`skylake`
`dilithium2`	`avx2`
`dilithium2`	`ref`
`dilithium3`	`avx2`
`dilithium3`	`ref`
`dilithium5`	`avx2`
`dilithium5`	`ref`
`dilithium2aes`	`avx2`
`dilithium2aes`	`ref`
`dilithium3aes`	`avx2`
`dilithium3aes`	`ref`
`dilithium5aes`	`avx2`
`dilithium5aes`	`ref`
`donald512`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`donald512`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`donald1024`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`donald1024`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`donald2048`	`cryptopp`	Wei Dai (wrapper around Crypto++)
`donald2048`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`donald2048`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldb163`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldb163`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldb233`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldb233`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldb283`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldb283`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldb409`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldb409`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldb571`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldb571`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldk163`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldk163`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldk233`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldk233`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldk283`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldk283`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldk409`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldk409`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldk571`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldk571`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp160`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp160`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp192`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp192`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp224`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp224`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp256`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp256`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp384`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp384`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp521`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ecdonaldp521`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ed25519`	`amd64-51-30k`	Daniel J. Bernstein Niels Duif Tanja Lange lead: Peter Schwabe Bo-Yin Yang
`ed25519`	`amd64-64-24k`	Daniel J. Bernstein Niels Duif Tanja Lange lead: Peter Schwabe Bo-Yin Yang
`ed25519`	`neon`	Daniel J. Bernstein Peter Schwabe
`ed25519`	`ref10`
`ed25519`	`ref`	Daniel J. Bernstein Niels Duif Tanja Lange lead: Peter Schwabe Bo-Yin Yang
`ed448goldilocks`	`32`
`ed448goldilocks`	`64`
`ed448goldilocks`	`amd64`
`ed448goldilocks`	`arm32`
`ed448goldilocks`	`neon`
`edons128k08n72nu8l4mu3`	`ref`	Danilo Gligoroski
`edons128ref`	`ref`	Danilo Gligoroski
`falcon1024dyn`	`avx2`	Thomas Pornin
`falcon1024dyn`	`fpu`	Thomas Pornin
`falcon1024dyn`	`ref`	Thomas Pornin
`falcon1024tree`	`avx2`	Thomas Pornin
`falcon1024tree`	`fpu`	Thomas Pornin
`falcon1024tree`	`ref`	Thomas Pornin
`falcon512dyn`	`avx2`	Thomas Pornin
`falcon512dyn`	`fpu`	Thomas Pornin
`falcon512dyn`	`ref`	Thomas Pornin
`falcon512tree`	`avx2`	Thomas Pornin
`falcon512tree`	`fpu`	Thomas Pornin
`falcon512tree`	`ref`	Thomas Pornin
`fslwe25`	`ref`
`fslwe37`	`ref`
`fslwe47`	`ref`
`fslwe69`	`ref`
`gemss128`	`opt`
`gemss128`	`ref`
`gemss128`	`skylake`
`gemss192`	`opt`
`gemss192`	`ref`
`gemss192`	`skylake`
`gemss256`	`opt`
`gemss256`	`ref`
`gemss256`	`skylake`
`gemss128v2`	`opt`
`gemss128v2`	`ref`
`gemss128v2`	`skylake`
`gemss192v2`	`opt`
`gemss192v2`	`ref`
`gemss192v2`	`skylake`
`gemss256v2`	`opt`
`gemss256v2`	`ref`
`gemss256v2`	`skylake`
`gravitysphincsl`	`fast`
`gravitysphincsl`	`ref`
`gravitysphincsm`	`fast`
`gravitysphincsm`	`ref`
`gravitysphincss`	`fast`
`gravitysphincss`	`ref`
`gui184`	`amd64`
`gui184`	`pclmulqdq`
`gui184`	`ref`
`gui312`	`amd64`
`gui312`	`pclmulqdq`
`gui312`	`ref`
`gui448`	`amd64`
`gui448`	`pclmulqdq`
`gui448`	`ref`
`hector`	`ref`	Peter Birkner, Technische Universiteit Eindhoven Peter Schwabe, Technische Universiteit Eindhoven
`lattisigns512`	`avx`	Tim Güneysu Tobias Oder Thomas Pöppelmann Peter Schwabe
`luov863256`	`avx2`	Ward Beullens
`luov863256`	`portable`
`luov863256`	`ref`
`luov890351`	`avx2`	Ward Beullens
`luov890351`	`portable`
`luov890351`	`ref`
`luov4849242`	`portable`
`luov4849242`	`ref`
`luov6468330`	`portable`
`luov6468330`	`ref`
`luov8117404pc`	`avx2`	Ward Beullens
`luov863256pc`	`avx2`	Ward Beullens
`luov890351pc`	`avx2`	Ward Beullens
`luov8086399`	`portable`
`luov8086399`	`ref`
`luov8117404`	`avx2`	Ward Beullens
`luov8117404`	`portable`
`luov8117404`	`ref`
`mqdss48`	`avx2`
`mqdss48`	`ref`
`mqdss64`	`avx2`
`mqdss64`	`ref`
`mqqsig160`	`sse`	Rune Erlend Jensen Danilo Gligoroski
`mqqsig192`	`ref`	Rune Erlend Jensen Danilo Gligoroski
`mqqsig224`	`ref`	Rune Erlend Jensen Danilo Gligoroski
`mqqsig256`	`ref`	Rune Erlend Jensen Danilo Gligoroski
`ntrumls401x`	`ref`	John M. Schanck
`ntrumls439x`	`ref`	John M. Schanck
`ntrumls593x`	`ref`	John M. Schanck
`ntrumls743x`	`ref`	John M. Schanck
`pass769`	`ref-karatsuba`
`pass863`	`ref-karatsuba`
`pflash1`	`ref`	Chia-Hsin Owen Chen Ming-Shing Chen
`picnic2l1fs`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l1fs`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l1fs`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l1fs`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l1fs`	`ref`	Greg Zaverucha (Microsoft Research)
`picnic2l3fs`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l3fs`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l3fs`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l3fs`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l3fs`	`ref`	Greg Zaverucha (Microsoft Research)
`picnic2l5fs`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l5fs`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l5fs`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l5fs`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic2l5fs`	`ref`	Greg Zaverucha (Microsoft Research)
`picnic3l1`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l1`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l1`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l1`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l1`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnic3l3`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l3`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l3`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l3`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l3`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnic3l5`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l5`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l5`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l5`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnic3l5`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnicl1fs`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1fs`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1fs`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1fs`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1fs`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnicl1full`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1full`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1full`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1full`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1full`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnicl1ur`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1ur`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1ur`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1ur`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl1ur`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnicl3fs`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3fs`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3fs`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3fs`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3fs`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnicl3full`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3full`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3full`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3full`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3full`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnicl3ur`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3ur`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3ur`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3ur`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl3ur`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnicl5fs`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5fs`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5fs`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5fs`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5fs`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnicl5full`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5full`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5full`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5full`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5full`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`picnicl5ur`	`optimizedct/avx2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5ur`	`optimizedct/c`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5ur`	`optimizedct/neon`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5ur`	`optimizedct/sse2`	David Derler (Graz University of Technology) Alexander Grass (Graz University of Technology) Daniel Kales (Graz University of Technology) Angela Promitzer Sebastian Ramacher (AIT Austrian Institute of Technology)
`picnicl5ur`	`ref`	Greg Zaverucha (Microsoft Research) Sebastian Ramacher (AIT Austrian Institute of Technology) Daniel Kales (Graz University of Technology) Steven Goldfeder (Princeton University)
`pqrsa15`	`ref`
`qtesla1`	`ref`
`qtesla128`	`ref`
`qtesla192`	`ref`
`qtesla256`	`ref`
`qtesla1p`	`ref`
`qtesla3f`	`ref`
`qtesla3p`	`ref`
`qtesla3s`	`ref`
`rainbow`	`ref`	Jintai Ding, University of Cincinnati Dieter Schmidt, University of Cincinnati
`rainbow5640`	`ref`	Anna Inn-Tung Chen Tien-Ren Chen Ming-Shing Chen
`rainbow6440`	`ref`	Anna Inn-Tung Chen Tien-Ren Chen Ming-Shing Chen
`rainbow181212`	`ref`
`rainbow1a`	`avx2`
`rainbow1a`	`portable`
`rainbow1a`	`ref`
`rainbow1aclassic363232`	`amd64`
`rainbow1aclassic363232`	`avx2`
`rainbow1aclassic363232`	`ref`
`rainbow1aclassic363232`	`ssse3`
`rainbow1acompres363232`	`amd64`
`rainbow1acompres363232`	`avx2`
`rainbow1acompres363232`	`ref`
`rainbow1acompres363232`	`ssse3`
`rainbow1acyclicc363232`	`amd64`
`rainbow1acyclicc363232`	`avx2`
`rainbow1acyclicc363232`	`ref`
`rainbow1acyclicc363232`	`ssse3`
`rainbow1b`	`avx2`
`rainbow1b`	`portable`
`rainbow1b`	`ref`
`rainbow1c`	`avx2`
`rainbow1c`	`portable`
`rainbow1c`	`ref`
`rainbow3b`	`avx2`
`rainbow3b`	`portable`
`rainbow3b`	`ref`
`rainbow3c`	`avx2`
`rainbow3c`	`portable`
`rainbow3c`	`ref`
`rainbow3cclassic683248`	`amd64`
`rainbow3cclassic683248`	`avx2`
`rainbow3cclassic683248`	`ref`
`rainbow3cclassic683248`	`ssse3`
`rainbow3ccompres683248`	`amd64`
`rainbow3ccompres683248`	`avx2`
`rainbow3ccompres683248`	`ref`
`rainbow3ccompres683248`	`ssse3`
`rainbow3ccyclicc683248`	`amd64`
`rainbow3ccyclicc683248`	`avx2`
`rainbow3ccyclicc683248`	`ref`
`rainbow3ccyclicc683248`	`ssse3`
`rainbow4a`	`avx2`
`rainbow4a`	`portable`
`rainbow4a`	`ref`
`rainbow5c`	`avx2`
`rainbow5c`	`portable`
`rainbow5c`	`ref`
`rainbow5cclassic963664`	`amd64`
`rainbow5cclassic963664`	`avx2`
`rainbow5cclassic963664`	`ref`
`rainbow5cclassic963664`	`ssse3`
`rainbow5ccompres963664`	`amd64`
`rainbow5ccompres963664`	`avx2`
`rainbow5ccompres963664`	`ref`
`rainbow5ccompres963664`	`ssse3`
`rainbow5ccyclicc963664`	`amd64`
`rainbow5ccyclicc963664`	`avx2`
`rainbow5ccyclicc963664`	`ref`
`rainbow5ccyclicc963664`	`ssse3`
`rainbow6a`	`avx2`
`rainbow6a`	`portable`
`rainbow6a`	`ref`
`rainbow6b`	`avx2`
`rainbow6b`	`portable`
`rainbow6b`	`ref`
`rainbowbinary16242020`	`ref`	Ming-Shing Chen
`rainbowbinary256181212`	`ref`	Ming-Shing Chen
`redgemss128`	`opt`
`redgemss128`	`ref`
`redgemss128`	`skylake`
`redgemss192`	`opt`
`redgemss192`	`ref`
`redgemss192`	`skylake`
`redgemss256`	`opt`
`redgemss256`	`ref`
`redgemss256`	`skylake`
`redgemss128v2`	`opt`
`redgemss128v2`	`ref`
`redgemss128v2`	`skylake`
`redgemss192v2`	`opt`
`redgemss192v2`	`ref`
`redgemss192v2`	`skylake`
`redgemss256v2`	`opt`
`redgemss256v2`	`ref`
`redgemss256v2`	`skylake`
`ronald512`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald512`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald768`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald768`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald1024`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald1024`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald1536`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald1536`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald2048`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald2048`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald3072`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald3072`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald4096`	`openssl`	Daniel J. Bernstein (wrapper around OpenSSL)
`ronald4096`	`opensslnew`	Daniel J. Bernstein (wrapper around OpenSSL)
`rwb0fuz1024`	`gmp`	Adam Langley
`sflashv2`	`ref`	Louis Goubin, Université de Versailles Nicolas Courtois, University College London Thomas Icart, École Polytechnique
`sphincs256`	`avx2`	Daniel J. Bernstein1 Daira Hopwood Andreas Hülsing Tanja Lange Ruben Niederhagen Louiza Papachristodoulou Peter Schwabe Zooko Wilcox O'Hearn
`sphincs256`	`ref`	Daniel J. Bernstein1 Daira Hopwood Andreas Hülsing Tanja Lange Ruben Niederhagen Louiza Papachristodoulou Peter Schwabe Zooko Wilcox O'Hearn
`sphincsf128harakarobust`	`aesni`
`sphincsf128harakarobust`	`ref`
`sphincsf128harakasimple`	`aesni`
`sphincsf128harakasimple`	`ref`
`sphincsf128sha256robust`	`avx2`
`sphincsf128sha256robust`	`ref`
`sphincsf128sha256simple`	`avx2`
`sphincsf128sha256simple`	`ref`
`sphincsf128shake256robust`	`avx2`
`sphincsf128shake256robust`	`ref`
`sphincsf128shake256simple`	`avx2`
`sphincsf128shake256simple`	`ref`
`sphincsf192harakarobust`	`aesni`
`sphincsf192harakarobust`	`ref`
`sphincsf192harakasimple`	`aesni`
`sphincsf192harakasimple`	`ref`
`sphincsf192sha256robust`	`avx2`
`sphincsf192sha256robust`	`ref`
`sphincsf192sha256simple`	`avx2`
`sphincsf192sha256simple`	`ref`
`sphincsf192shake256robust`	`avx2`
`sphincsf192shake256robust`	`ref`
`sphincsf192shake256simple`	`avx2`
`sphincsf192shake256simple`	`ref`
`sphincsf256harakarobust`	`aesni`
`sphincsf256harakarobust`	`ref`
`sphincsf256harakasimple`	`aesni`
`sphincsf256harakasimple`	`ref`
`sphincsf256sha256robust`	`avx2`
`sphincsf256sha256robust`	`ref`
`sphincsf256sha256simple`	`avx2`
`sphincsf256sha256simple`	`ref`
`sphincsf256shake256robust`	`avx2`
`sphincsf256shake256robust`	`ref`
`sphincsf256shake256simple`	`avx2`
`sphincsf256shake256simple`	`ref`
`sphincss128harakarobust`	`aesni`
`sphincss128harakarobust`	`ref`
`sphincss128harakasimple`	`aesni`
`sphincss128harakasimple`	`ref`
`sphincss128sha256robust`	`avx2`
`sphincss128sha256robust`	`ref`
`sphincss128sha256simple`	`avx2`
`sphincss128sha256simple`	`ref`
`sphincss128shake256robust`	`avx2`
`sphincss128shake256robust`	`ref`
`sphincss128shake256simple`	`avx2`
`sphincss128shake256simple`	`ref`
`sphincss192harakarobust`	`aesni`
`sphincss192harakarobust`	`ref`
`sphincss192harakasimple`	`aesni`
`sphincss192harakasimple`	`ref`
`sphincss192sha256robust`	`avx2`
`sphincss192sha256robust`	`ref`
`sphincss192sha256simple`	`avx2`
`sphincss192sha256simple`	`ref`
`sphincss192shake256robust`	`avx2`
`sphincss192shake256robust`	`ref`
`sphincss192shake256simple`	`avx2`
`sphincss192shake256simple`	`ref`
`sphincss256harakarobust`	`aesni`
`sphincss256harakarobust`	`ref`
`sphincss256harakasimple`	`aesni`
`sphincss256harakasimple`	`ref`
`sphincss256sha256robust`	`avx2`
`sphincss256sha256robust`	`ref`
`sphincss256sha256simple`	`avx2`
`sphincss256sha256simple`	`ref`
`sphincss256shake256robust`	`avx2`
`sphincss256shake256robust`	`ref`
`sphincss256shake256simple`	`avx2`
`sphincss256shake256simple`	`ref`
`tts6440`	`ref`	Tien-Ren Chen Ming-Shing Chen

Version

This is version 2024.04.25 of the primitives-sign.html web page. This web page is in the public domain.

eBACS: ECRYPT Benchmarking of Cryptographic Systems

List of public-key signature systems measured

Which signature systems are measured?

Implementations

Version