SLH-DSA (FIPS 205)
What is SLH-DSA (FIPS 205)?
SLH-DSA (FIPS 205)NIST's standardized stateless hash-based post-quantum signature scheme, derived from SPHINCS+ and published as FIPS 205 in August 2024 — the conservative PQ signature option, relying only on hash-function security.
SLH-DSA (Stateless Hash-Based Digital Signature Algorithm), published as FIPS 205 on 13 August 2024, is NIST's conservative post-quantum signature standard, derived from SPHINCS+ . Unlike ML-DSA, which rests on lattice-problem assumptions, SLH-DSA's security depends solely on the properties of its underlying hash function (SHA-256 or SHAKE-256), giving it the strongest theoretical conservatism in the NIST PQC portfolio. The price is size and speed: SLH-DSA signatures range from about 8 KB to 50 KB depending on parameter set (small, fast, robust variants in 128, 192, and 256-bit categories), and signing is markedly slower than ML-DSA. That makes SLH-DSA well suited to use cases where signature size and signing throughput are secondary to long-term resilience and minimal assumption count — root-of-trust signatures, long-lived firmware keys, and certificates that may need to remain trustworthy decades from now. SLH-DSA is 'stateless', a major operational improvement over the stateful XMSS and LMS hash-based signatures, since the signer doesn't need to track which one-time keys have been used.
● Examples
- 01
A nation-state root CA issues its top-level signing certificate with SLH-DSA-SHA2-256s to maximise resilience across the certificate's planned 30-year lifetime.
- 02
A secure-boot ROM key uses SLH-DSA so that even if every lattice and elliptic-curve assumption breaks, the signature still verifies.
● Frequently asked questions
What is SLH-DSA (FIPS 205)?
NIST's standardized stateless hash-based post-quantum signature scheme, derived from SPHINCS+ and published as FIPS 205 in August 2024 — the conservative PQ signature option, relying only on hash-function security. It belongs to the Cryptography category of cybersecurity.
What does SLH-DSA (FIPS 205) mean?
NIST's standardized stateless hash-based post-quantum signature scheme, derived from SPHINCS+ and published as FIPS 205 in August 2024 — the conservative PQ signature option, relying only on hash-function security.
How do you defend against SLH-DSA (FIPS 205)?
Defences for SLH-DSA (FIPS 205) typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for SLH-DSA (FIPS 205)?
Common alternative names include: FIPS 205, SPHINCS+ (standardized), Stateless hash-based DSA.