What Is NIST FIPS 205?
NIST FIPS 205 is the US federal standard for SLH-DSA โ the Stateless Hash-Based Digital Signature Algorithm, previously known as SPHINCS+. Like FIPS 203 and FIPS 204, it was published in August 2024 as part of NIST's landmark post-quantum cryptography standardisation effort.
What makes FIPS 205 / SLH-DSA unique among the three new standards is its mathematical foundation: its security relies entirely on the properties of hash functions, not on lattice problems or other number-theoretic assumptions. This makes it the most conservative and widely trusted of the post-quantum options.
Hash Functions vs. Lattices: Why the Distinction Matters
The other two NIST standards โ FIPS 203 (ML-KEM) and FIPS 204 (ML-DSA) โ are based on lattice problems (specifically Module Learning With Errors). These are believed to be quantum-resistant, but they represent newer mathematical territory that has been under serious cryptanalysis for roughly a decade.
Hash functions, by contrast, have been studied intensively for over 40 years. The security properties of SHA-2 and SHA-3 family functions are very well understood. Quantum computers using Grover's algorithm provide only a quadratic speedup against hash functions โ meaning doubling the output size (e.g., using SHA3-512 instead of SHA3-256) fully restores the security margin.
By implementing SLH-DSA alongside ML-DSA, BMIC achieves defence-in-depth: two completely independent security layers based on completely different mathematical assumptions. The probability of both being broken simultaneously is essentially zero with current cryptanalytic knowledge.
How SLH-DSA Works
SLH-DSA is a stateless signature scheme built from three components:
- WOTS+ (Winternitz One-Time Signature Plus) โ one-time signatures that form the leaves of Merkle trees
- FORS (Forest of Random Subsets) โ a few-time signature scheme used to sign the message digest
- HT (Hypertree) โ a tree of XMSS trees that authenticates the FORS public key back to a single root
The "stateless" in SLH-DSA is crucial: unlike some hash-based schemes that require tracking which keys have been used (introducing state management complexity), SLH-DSA generates all signing randomness deterministically from the message and private key. This eliminates the risk of catastrophic key reuse that stateful schemes must carefully avoid.
FIPS 205 Parameter Sets
| Parameter Set | Security | Signature Size | Speed |
|---|---|---|---|
| SLH-DSA-SHA2-128s | Category 1 | ~7.8 KB | Small, slow |
| SLH-DSA-SHA2-128f | Category 1 | ~17 KB | Small, fast |
| SLH-DSA-SHA2-192s | Category 3 | ~16 KB | Medium, slow |
| SLH-DSA-SHA2-256s | Category 5 | ~29 KB | Large, slow |
SLH-DSA signatures are larger than ML-DSA signatures, which is why BMIC uses ML-DSA (FIPS 204) as the primary signature scheme for transaction signing and SLH-DSA (FIPS 205) as a secondary conservative layer. This hybrid approach optimises for both performance and maximum security assurance.
Why BMIC's Triple-Standard Compliance Is Unique
No other presale-stage blockchain project currently implements all three NIST post-quantum standards โ FIPS 203, FIPS 204, and FIPS 205 โ simultaneously. This triple-standard compliance is not just a checkbox; it reflects a deep architectural commitment to quantum security at every layer of the protocol stack.
The BMIC presale is live at $0.049, with over $530K raised from more than 186 media outlets covering the project. TGE is targeted for Q2 2026. Presale participants earn 85% APY through BMIC's staking programme.
DYOR Disclaimer: Educational content only. Not investment advice. Always conduct your own research before investing in crypto.
Frequently Asked Questions
What is NIST FIPS 205?
FIPS 205 standardises SLH-DSA (formerly SPHINCS+) for quantum-resistant signatures based solely on hash function security, published August 2024.
What's the difference between ML-DSA and SLH-DSA?
ML-DSA uses lattice math (MLWE). SLH-DSA uses hash functions only. SLH-DSA is more conservative and produces larger signatures.
Why does BMIC implement both FIPS 204 and FIPS 205?
Defence-in-depth. If lattice cryptography were weakened, hash-based FIPS 205 remains secure. The two are mathematically independent.
What is SPHINCS+?
SPHINCS+ is the original name for SLH-DSA (FIPS 205) โ a stateless hash-based signature scheme using FORS and Hypertree structures.
What is BMIC's presale price and TGE?
$0.049 presale price, $530K+ raised, TGE Q2 2026, 85% APY staking available.