Here at wolfSSL, we have enhanced our Leighton-Micali Signature (LMS) implementation with a new optional state serialization feature that significantly improves key reload performance for applications requiring frequent signing operations. The LMS post-quantum signature scheme is stateful by nature, meaning each signature operation updates the internal state of the private key, and this state must be persisted to prevent signature reuse. Previously, when reloading an LMS key for signing, wolfSSL would reconstruct the entire internal state of the private key. This reconstruction process could be time-consuming.
The new enhancement introduces the WOLFSSL_WC_LMS_SERIALIZE_STATE compile-time option, which changes how private key state is stored and reloaded. While this approach requires significantly more storage space for the private key, it enables dramatically faster reload times since the internal state can be restored directly from storage rather than being recomputed from scratch.
This optimization is particularly valuable for embedded systems and IoT devices that need to reload the LMS key for each signing operation. The trade-off between storage space and reload performance gives developers the agility that has always been a hallmark of wolfSSL’s approach to cryptographic implementations.
Are you afraid of getting locked out of the best fit architectures due to lack of trade-off options? Use wolfSSL’s libraries and you’ll never be in that position again.
If you have questions about any of the above, please contact us at facts@wolfssl.com or call us at +1 425 245 8247.
Download wolfSSL Now