RFC 9802
Use of the HSS and XMSS Hash-Based Signature Algorithms in Internet X.509 Public Key Infrastructure, June 2025
- File formats:
- Also available: XML file for editing
- Status:
- PROPOSED STANDARD
- Authors:
- D. Van Geest
K. Bashiri
S. Fluhrer
S. Gazdag
S. Kousidis - Stream:
- IETF
- Source:
- lamps (sec)
Cite this RFC: TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC9802
Discuss this RFC: Send questions or comments to the mailing list spasm@ietf.org
Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 9802
Abstract
This document specifies algorithm identifiers and ASN.1 encoding formats for the following stateful Hash-Based Signature (HBS) schemes: Hierarchical Signature System (HSS), eXtended Merkle Signature Scheme (XMSS), and XMSS^MT (a multi-tree variant of XMSS). This specification applies to the Internet X.509 Public Key Infrastructure (PKI) when digital signatures are used to sign certificates and certificate revocation lists (CRLs).
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.