Date Published: May 2026
Author(s)
Gorjan Alagic (NIST), Maxime Bros (NIST, IZUM, Inc.), Pierre Ciadoux (NIST), Quynh Dang (NIST), Thinh Dang (NIST), John Kelsey (NIST), Jacob Lichtinger (NIST), Yi-Kai Liu (NIST), Carl Miller (NIST), Dustin Moody (NIST), Rene Peralta (NIST), Ray Perlner (NIST), Angela Robinson (NIST), Hamilton Silberg (NIST), Daniel Smith-Tone (NIST), Noah Waller (NIST)
This report describes the evaluation criteria and selection process of the Second Round of the Additional Digital Signatures for the NIST Post-Quantum Cryptography (PQC) Standardization Process, which will identify public-key digital signature algorithms for potential standardization to protect sensitive information into the foreseeable future, including after the advent of quantum computers. Any signature scheme that is eventually selected will augment FIPS 204, Module-Lattice-Based Digital Signature Standard; FIPS 205, Stateless Hash-Based Digital Signature Standard; FIPS 186-5, Digital Signature Standard (DSS); and SP 800-208, Recommendation for Stateful Hash-Based Signature Schemes. Based on public feedback and internal reviews of the second-round candidates, NIST has selected nine candidate algorithms to move forward to the third round of evaluation: FAEST, HAWK, MAYO, MQOM, QR-UOV, SDitH, SNOVA, SQIsign, and UOV.
This report describes the evaluation criteria and selection process of the Second Round of the Additional Digital Signatures for the NIST Post-Quantum Cryptography (PQC) Standardization Process, which will identify public-key digital signature algorithms for potential standardization to protect...
See full abstract
This report describes the evaluation criteria and selection process of the Second Round of the Additional Digital Signatures for the NIST Post-Quantum Cryptography (PQC) Standardization Process, which will identify public-key digital signature algorithms for potential standardization to protect sensitive information into the foreseeable future, including after the advent of quantum computers. Any signature scheme that is eventually selected will augment FIPS 204, Module-Lattice-Based Digital Signature Standard; FIPS 205, Stateless Hash-Based Digital Signature Standard; FIPS 186-5, Digital Signature Standard (DSS); and SP 800-208, Recommendation for Stateful Hash-Based Signature Schemes. Based on public feedback and internal reviews of the second-round candidates, NIST has selected nine candidate algorithms to move forward to the third round of evaluation: FAEST, HAWK, MAYO, MQOM, QR-UOV, SDitH, SNOVA, SQIsign, and UOV.
Hide full abstract
Keywords
cryptography; digital signatures; post-quantum cryptography; quantum-resistant; quantum-safe
Control Families
None selected
