# quipnetwork/hashsigs-solidity

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/quipnetwork-hashsigs-solidity).**

2,957 stars · 9 forks · Solidity · agpl-3.0

## Links

- GitHub: https://github.com/QuipNetwork/hashsigs-solidity
- awesome-repositories: https://awesome-repositories.com/repository/quipnetwork-hashsigs-solidity.md

## Description

hashsigs-solidity is a cryptographic signature library and security utility for Ethereum smart contracts. It functions as a hash-based signature verifier designed to confirm data origin and integrity within a virtual machine environment.

The project focuses on on-chain cryptographic authentication, specifically the verification of one-time signatures to prevent replay attacks. It implements signature validation for Winternitz One-Time Signatures Plus to ensure that data has not been tampered with before it is processed by a contract.

The library covers a broad range of cryptographic capabilities, including Merkle-tree path verification, hash-chain based authentication, and preimage-based identity proofs. It also manages state-based key tracking to maintain security across smart contract interactions.

## Tags

### Part of an Awesome List

- [Smart Contract Security](https://awesome-repositories.com/f/awesome-lists/security/smart-contract-security.md) — Provides a security utility library for implementing digital signature verification in Ethereum contracts.

### Security & Cryptography

- [Cryptographic Signature Verification](https://awesome-repositories.com/f/security-cryptography/cryptographic-signature-verification.md) — Validates cryptographic signatures within Solidity smart contracts to ensure authenticity.
- [Hash-Based Signature Verifiers](https://awesome-repositories.com/f/security-cryptography/cryptographic-signature-verification/alternative-signature-verifiers/hash-based-signature-verifiers.md) — Functions as a specialized tool for validating hash-based signatures to confirm data origin.
- [WOTS+ Verifiers](https://awesome-repositories.com/f/security-cryptography/cryptographic-signature-verification/wots-verifiers.md) — Implements signature validation for Winternitz One-Time Signatures Plus. ([source](https://github.com/QuipNetwork/hashsigs-solidity/blob/main/package-lock.json))
- [Digital Signature Libraries](https://awesome-repositories.com/f/security-cryptography/digital-signature-libraries.md) — Provides a library for verifying hash-based one-time signatures on the blockchain.
- [Digital Signature Validators](https://awesome-repositories.com/f/security-cryptography/digital-signature-validators.md) — Provides tools for validating cryptographic signatures within a virtual machine environment. ([source](https://github.com/QuipNetwork/hashsigs-solidity/blob/main/.gitmodules))
- [One-Time Signature Validators](https://awesome-repositories.com/f/security-cryptography/digital-signature-validators/one-time-signature-validators.md) — Implements validation for one-time signatures to ensure a message is only processed once.
- [On-Chain Authentications](https://awesome-repositories.com/f/security-cryptography/on-chain-authentications.md) — Enables proving sender identity within the EVM using hash-based digital signatures.
- [One-Time Signature Verifiers](https://awesome-repositories.com/f/security-cryptography/signature-verification-tools/one-time-signature-verifiers.md) — Confirms single-use hash-based signatures to prevent replay attacks.
- [Hash-Chain Authentications](https://awesome-repositories.com/f/security-cryptography/hash-chain-authentications.md) — Provides identity verification through the validation of pre-calculated hash chains.
- [Merkle Tree Utilities](https://awesome-repositories.com/f/security-cryptography/merkle-tree-utilities.md) — Includes utilities for verifying leaf nodes via Merkle tree path proofs.
- [Preimage Proofs](https://awesome-repositories.com/f/security-cryptography/preimage-proofs.md) — Verifies claimants by matching provided secret values against stored hashes.
- [Key Usage Tracking](https://awesome-repositories.com/f/security-cryptography/public-key-authentication/public-key-retrieval/key-usage-tracking.md) — Tracks the usage of public keys in contract storage to eliminate replay attacks.
- [Smart Contract Integrity Checks](https://awesome-repositories.com/f/security-cryptography/smart-contract-integrity-checks.md) — Uses cryptographic checks to verify data integrity before it is processed by a contract.