CRYSTALS-Dilithium Explained

CRYSTALS-Dilithium — now officially standardized as ML-DSA (Module Lattice Digital Signature Algorithm) under NIST FIPS 204 — is the quantum-safe replacement for ECDSA. It's the algorithm that signs every BMIC transaction, making them immune to quantum attacks.

What Is CRYSTALS-Dilithium?

Dilithium is a lattice-based digital signature scheme. Unlike ECDSA, which relies on the difficulty of the elliptic curve discrete logarithm problem (breakable by quantum computers), Dilithium's security is based on two lattice problems:

• Module-LWE (Learning With Errors): Given a system of approximate linear equations, find the secret vector. This is hard for both classical and quantum computers.
• Module-SIS (Short Integer Solution): Find a short vector in a lattice. Also resistant to quantum attacks.

These problems have been studied for decades by mathematicians and are believed to be fundamentally hard — there's no known quantum algorithm that solves them efficiently.

Dilithium vs ECDSA

• Quantum resistance: Dilithium is quantum-safe; ECDSA is quantum-vulnerable
• Key sizes: Dilithium keys are larger (~1.3KB public key vs 33 bytes for ECDSA), but still practical for blockchain use
• Signature sizes: ~2.4KB for Dilithium vs 64 bytes for ECDSA — larger but within blockchain gas limits
• Speed: Dilithium signing and verification are fast — comparable to ECDSA in practical applications
• Standardization: Both are standards — ECDSA is the current standard, Dilithium is the future standard

The NIST Selection Process

Dilithium was chosen through NIST's Post-Quantum Cryptography Standardization Process:

1. 2016: NIST issues call for proposals — 82 candidate algorithms submitted
2. 2017–2019: Round 1 — narrowed to 26 candidates
3. 2019–2020: Round 2 — narrowed to 7 finalists
4. 2020–2022: Round 3 — Dilithium selected as primary signature standard
5. August 2024: FIPS 204 (ML-DSA) finalized as official standard

This 6-year process is the most rigorous cryptographic evaluation ever conducted. When BMIC implements Dilithium, it's using the single most vetted post-quantum algorithm in existence.

How BMIC Uses Dilithium

In BMIC's ERC-4337 smart contract wallets:

1. Key generation: Your wallet generates a Dilithium key pair instead of an ECDSA key pair
2. Transaction signing: Every transaction is signed with your Dilithium private key
3. Verification: The smart contract verifies the Dilithium signature on-chain
4. Upgradeability: If improved algorithms emerge, the wallet can switch without moving funds

This architecture was highlighted by NewsBTC as a breakthrough in crypto wallet design.

Who Else Uses Dilithium?

• U.S. Government: Mandated for all federal systems
• Apple: Implementing in iMessage
• Cloudflare: Testing for TLS connections
• BMIC: First crypto project to implement for on-chain transactions