QNSI
Start building free
Why QNSI
The Quantum ImperativeWhy QNSIPQC Migration GuideCompetitive AnalysisVet PQC Vendors
Platform
Platform ArchitectureCapabilitiesUse Cases by IndustryKnowledge BaseBlogResearch
Trust
Trust HubCompliance MappingNIST ACVP ConformancePerformance BenchmarksEntropy ChainAlgorithm CatalogSystem Status
Developers
Developer HubUse CasesAI Assistants (MCP)
PricingContactStart building free

Digital Signature

SNOVA

Simple Noncommutative-ring-based UOV Algorithm

non-FIPSmultivariate1 parameter setsQNSI tier: default+provider: liboqs
Multivariate signature scheme using a non-commutative ring structure to reduce public-key size relative to plain UOV. NIST PQC additional-signatures track candidate.

Mechanism

How it works

SNOVA modifies UOV's underlying field to a non-commutative matrix ring, dramatically reducing public-key size while preserving multivariate hardness.

Parameter Sets

1 variants shipped

Each variant trades security category against key, ciphertext, or signature size. QNSI exposes all variants via the @heossi/liboqs-native binding; tenant crypto-policy determines which are allowed.

VariantNIST LevelPublic KeySecret KeySignatureNote
SNOVA (multiple param sets at NIST levels 1, 3, 5)L52,456 B48 B168 B

NIST ACVP

Conformance evidence

QNSI runs the official NIST ACVP test vectors against every shipped algorithm. Live evidence + SHA-3-256 tamper digest at /verify/conformance.

@noble/post-quantum
non-addressable
Pure-JavaScript reference; cross-verification secondary on Maximum + Government tiers.
@heossi/liboqs-native
non-addressable
Native-C primary production engine. Runs across every QNSI backend service.
View live ACVP evidence →

Use Cases

When to use it

  • Multivariate signatures with much smaller public keys than plain UOV
  • NIST PQC additional-signatures track candidate

Trade-offs

What you give up, what you get

  • Compact public keys and signatures
  • Non-commutative ring structure is newer — less cryptanalysis history than UOV

FAQ

SNOVA — frequently asked questions

Concise, source-of-truth answers to the questions buyers and engineers ask most about this algorithm.

What is SNOVA?

SNOVA (Simple Noncommutative-ring-based UOV Algorithm) is a multivariate post-quantum digital signature scheme. It is designed to resist attacks from both classical and quantum computers, and QNSI ships 1 of its parameter sets.

Is SNOVA NIST-standardized?

SNOVA is not a finalized NIST FIPS standard. QNSI ships it as a non-FIPS post-quantum option, typically to add an independent cryptographic assumption (multivariate) alongside the FIPS-standardized ML-KEM and ML-DSA for defence-in-depth.

What is SNOVA used for?

On QNSI, SNOVA is used for Multivariate signatures with much smaller public keys than plain UOV; NIST PQC additional-signatures track candidate. It is available from the default crypto-policy tier upward via the liboqs provider.

References

Primary sources