This is an reference implementation of The Picnic Signature Algorithm
The Picnic family of digital signature algorithms is designed to provide security against attacks by quantum computers, in addition to attacks by classical computers. The building blocks are a zero-knowledge proof system (with post-quantum security), and symmetric key primitives like hash functions and block ciphers, with well-understood post-quantum security. Picnic does not require number-theoretic, or structured hardness assumptions.
-
Melissa Chase, David Derler, Steven Goldfeder, Claudio Orlandi, Sebastian Ramacher, Christian Rechberger, Daniel Slamanig, Greg Zaverucha. Post-Quantum Zero-Knowledge and Signatures from Symmetric-Key Primitives. ACM CCS 2017 (see also ePrint 2017/279).
-
The Picnic Signature Algorithm Specification, version 1.0, November 2017.
-
The Picnic Signature Algorithm Design Document, version 1.0, November 2017.
-
Léo Perrin, Angela Promitzer, Sebastian Ramacher, Christian Rechberger. Improvements to the Linear Layer of LowMC: A Faster Picnic. IACR Cryptology ePrint Archive Report 2017/1148
-
Optimized Implementation An implementation optimized for speed, able to make use of processor specific features.
-
Reference Implementation An implementation that tries to be simple, and follow the spec closely, to illustrate the algorithm.
- Steven Goldfeder, Sebastian Ramacher - "Post-Quantum Zero-Knowledge and Signatures from Symmetric-Key Primitives" - ACM CCS 2017 (slides).
- Sebastian Ramacher - "Post-Quantum Zero-Knowledge and Signatures from Symmetric-Key Primitives" - CryptoAction Symposium (COST Action IC1306).
- Melissa Chase - "Post-Quantum Signatures from Symmetric-Key Primitives" - Real-World Crypto 2018 (recording).
- Greg Zaverucha - "The Picnic Digital Signature Algorithm" - NIST First PQC Standardization Conference (slides).
- open-quantum-safe/liboqs: liboqs is a C library for quantum-resistant cryptographic algorithms. It has support for Picnic.
- HSM Demo: We have experimented with using Picnic on a commercial hardware security module, as described in the Design Document. The software is available here.
Although not directly related to Picnic, other post-quantum secure (privacy enhancing) primitives use the same building blocks as Picnic. We believe that this work nicely demonstrates the flexibility of the basic Picnic design, which is why we list the respective papers below.
- Dan Boneh, Saba Eskandarian, Ben Fisch. Post-Quantum Group Signatures from Symmetric Primitives. IACR Cryptology ePrint Archive Report 2018/261.
- David Derler, Sebastian Ramacher, Daniel Slamanig. Post-Quantum Zero-Knowledge Proofs for Accumulators with Applications to Ring Signatures from Symmetric-Key Primitives. PQCrypto 2018.
Picnic was designed by a group of cryptographers from Aarhus University, AIT Austrian Institute of Technology GmbH, Graz University of Technology, Microsoft Research, Princeton University, and Technical University of Denmark. The team includes Melissa Chase, David Derler, Steven Goldfeder, Claudio Orlandi, Sebastian Ramacher, Christian Rechberger, Daniel Slamanig, and Greg Zaverucha.
