go-lamport is a Go implementation of the Lamport One-Time Signature and Password scheme. This project provides an efficient and secure way to generate and verify signatures in Go, leveraging the robustness of the Lamport signature algorithm. Also it provides one time password mechanism with an arbitrary rounds count.
- Use Lamport one time auth scheme.
- Generate Lamport key pairs (private and public keys).
- Sign messages using the Lamport one-time signature method.
- Verify signatures against the corresponding public key.
- Ensures high security by marking keys as disposed after one use.
To use lib go-lamport, run the following command in your Go environment:
go get github.com/ssyrota/go-lamportrounds := 10_000
alice := NewOneTimeAuthAlice(rounds)
bob := NewOneTimeAuthBob(rounds, alice.InitialPassword()
for i := 0; i < rounds; i++ {
m_i, err := alice.NextPassword()
if err != nil {
...
}
validationErr := bob.Verify(*m_i)
if validationErr != nil {
...
}
}Generating a Key Pair:
import "github.com/ssyrota/go-lamport"
func main() {
auth := lamport.NewOneTimeAuth()
publicKey := auth.PublicKey()
// Save the public key for later verification
}Signing a Message:
func main() {
auth := lamport.NewOneTimeAuth()
message := lamport.Message{...} // Your [32]byte message here
signature, err := auth.Sign(message)
if err != nil {
// Handle error
}
// Use the signature
}Verifying a Signature:
func main() {
publicKey := ... // Load the public key
message := lamport.Message{...} // The message to verify
signature := ... // The signature to verify
isValid := lamport.OneTimeAuthVerify(message, signature, publicKey)
if isValid {
// Signature is valid
} else {
// Signature is invalid
}
}Contributions to go-lamport are welcome! Please read our contributing guidelines for details on how to submit contributions.
This project is licensed under the MIT License.