Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.


PANEL: Rehashing Pre-Hashing

April 12, 2024


John Kelsey - NIST
Scott Fluhrer - Cisco
Joseph Harvey - Verisign
Markku-Juhani Saarinen - SoC Hub Research Centre, Tampere University, Finland


The draft FIPS 204 and 205 include an option to apply the signature scheme to the digest (i.e., hash) of a message rather than the message itself, in order to reduce the size of the message input to the signature and verification operations. Several of the public comments on the drafts addressed the pre-hashing step that would produce the digest to be signed and how it would be used in applications. NIST followed up on the pqc-forum mailing list with a note, “Pure vs. pre-hash signing for ML-DSA and SLH-DSA,”  proposing a way to format the message input to the signature scheme in a way that distinguishes digest inputs from regular inputs. Participants responded to NIST’s proposal with further comments.

With the draft standards reaching their final form, it would be helpful to have a broader discussion on the design considerations for pre-hashing and how they may affect both the specification and the usage of FIPS 204 and 205.

Presented at

5th PQC Standardization Conference (2024) [in-person]

Event Details


    The NIST PQC conference will be held at the:
    Hilton Washington DC/Rockville Hotel
    1750 Rockville Pike
    Rockville, MD 20852

Related Topics

Security and Privacy: post-quantum cryptography

Created April 11, 2024, Updated April 15, 2024