At Rambus, we create cutting-edge semiconductor and IP products, spanning memory and interfaces to security, smart sensors and lighting.

Products
- - - Explore our full catalog of products so you can find the right solution to fit your needs.
    - Product Selector
Solutions
- - By Market
  - AI & Machine Learning
  - Automotive
  - Data Center
  - Edge
  - Government
  - IoT
- - - Explore our full catalog of products so you can find the right solution to fit your needs.
    - Product Selector
Resources
- - Resource Library
  - Our library of informational videos, papers, presentations, and more
  - Webinars
  - Check out our library of upcoming and on-demand webinars
- - Inventions
  - Explore innovations that enable the superior performance of Rambus solutions
  - Certifications
  - Certified silicon IP solutions tailored to the specific needs of some of the world’s most demanding applications
- - - Explore our full catalog of products so you can find the right solution to fit your needs.
    - Product Selector
Company
- - About
  - Corporate Overview
  - Leadership
  - Inventors
  - Careers
  - Locations
  - Investor Relations
- - News & Media
  - Newsroom
  - Blog
  - Events
- - - Explore our full catalog of products so you can find the right solution to fit your needs.
    - Product Selector
- English

Stateful Hash-Based Signature Library

Home > Security IP > Software Protocols > Stateful Hash-Based Signature Library

The Rambus standalone stateful hash-based signatures software library provides signature verification for stateful hash-based signatures.

It implements SHA-256 operation in software and has hardware integration with the Rambus EIP-120. In addition, it can be integrated with another hardware SHA core for acceleration.

The library is optimized for minimal footprint and stack usage, and it is designed to be hardware and OS agnostic.

Features

Fast and minimal LMS and XMSS software library
Bare-metal, no OS nor HW dependencies
Hardware acceleration option for SH-256
Single API for both HW and SW
Support for integrating third-party SW or HW SHA-256 implementation
Written in clear, highly portable C source code
Engineer-level support and regular updates provided under maintenance

Specifications

RFC 8391: XMSS: eXtended Merkle Signature Scheme
RFC 8554: LMS: Leighton-Micali Hash-Based Signatures
NIST SP 800-208 – Recommendation for Stateful Hash-Based Signature Schemes
RFC 6234: US Secure Hash Algorithms (SHA and SHA-based HMAC and HKDF)

Supported Parameter Sets:

LMS:

LMS_SHA256_M32_H10
LMS_SHA256_M32_H15
LMS_SHA256_M32_H20
LMOTS_SHA256_N32_W4

XMSS:

XMSS-SHA2_10_256
XMSS-SHA2_16_256
XMSS-SHA2_20_256

Use Cases

Secure boot
Firmware update
No OS, resource constrained environment
Quantum Safe requirements for above

From the blog

English

Stateful Hash-Based Signature Library

From the blog

Ask the Experts: Securing AI

Rambus MACsec-IP-361 is Certified ASIL-B Ready

A Focus on Mission-Critical Defense Solutions at GOMACTech

News

Rambus Protects Data Center Infrastructure with Quantum Safe Engine IP

Rambus Safeguards Accelerated Computing with FPGA-targeted Security IP

Rambus Delivers Quantum Safe IP Solutions with Next-Generation Root of Trust for Data Center Security

Papers

Securing Automotive Ethernet with MACsec Silicon IP

Protecting Data and Devices Now and in the Quantum Computing Era

RT-600 Root of Trust Series: A New Generation of Security Anchored in Hardware

Webinars

The Ultimate Guide to Secure Silicon

Quantum Safe Cryptography: Protecting Devices and Data in the Quantum Era

Emerging Security Challenges in Highly Interconnected Semiconductor Systems

Company

Products

Markets

Resources

Stateful Hash-Based Signature Library

From the blog

News

Papers

Webinars

Footer

Company

Products

Markets

Resources