SLH-DSA·Digital signature·NIST level 1

SLH-DSA-SHAKE-128s

SLH-DSA (FIPS 205) is a stateless hash-based signature scheme, standardized by NIST in August 2024. It relies only on the security of cryptographic hash functions — no number-theoretic assumptions. Larger signatures and slower signing, but the most conservative security basis.

The “s” (small) variant optimizes for signature size at the cost of signing speed — note the sign time is measured in seconds, not microseconds. Choose the “f” (fast) variant when signing throughput matters more than signature size.

Latest run2026-07-07 09:32 UTC
commitbfd529d
CPU
Xeon Platinum 8259CL @ 2.50GHz
Instance
t3.mediumburstable
OS / Kernel
24.04.4 LTS
liboqs
0.15.0
Wall clock
49m 51s
CPU steal
0.83%

Parameters

Family
SLH-DSA
Parameter set
SHAKE-128s
Public key
32 B
Private key
64 B
Signature
7.67 KB
Iterations / op
1,000
liboqs key
SLH_DSA_PURE_SHAKE_128S
keygenGenerate a fresh key pair.
54 of 54 runs
Mean
170.19 ms
Median
168.57 ms
p95
176.57 ms
p99
189.51 ms
Stdev
5.42 ms
Min
166.85 ms
Ops/sec
5.9
Mean over time

Click any point to view the GitHub Actions run that produced it.

signProduce a signature over a message using the private key.
54 of 54 runs
Mean
1.301 s
Median
1.294 s
p95
1.338 s
p99
1.399 s
Stdev
23.78 ms
Min
1.279 s
Ops/sec
0.77
Mean over time

Click any point to view the GitHub Actions run that produced it.

verifyVerify a signature against a message and public key.
54 of 54 runs
Mean
1.32 ms
Median
1.29 ms
p95
1.48 ms
p99
2.01 ms
Stdev
145.0 µs
Min
1.15 ms
Ops/sec
757
Mean over time

Click any point to view the GitHub Actions run that produced it.