Organizer: Prof. Johannes Buchmann, Moritz Horsch
The eXtended Merkle signature scheme (XMSS), one of the most promising post-quantum digital signature schemes, is currently being standardized by the Internet Engineering Task Force (IETF). Once fully standardized, XMSS is expected to be implemented in a wide variety of applications to replace existing digital signature schemes like RSA and DSA which are vulnerable to quantum computer attacks. Secure implementations need to be resistant to physical attacks, i.e., fault attacks and side-channel attacks. This talk provides an extensive analysis of the physical attack vulnerability of XMSS.