How (Not) to design strong-RSA signatures |
| |
| Authors: | Marc Joye |
| |
| Institution: | 1. Technicolor, Security & Content Protection Labs, 1 avenue de Belle Fontaine, 35576, Cesson-S??vign?? Cedex, France
|
| |
| Abstract: | This paper considers strong-RSA signature schemes built from the scheme of Cramer and Shoup. We present a basic scheme encompassing the main features of the Cramer-Shoup scheme. We analyze its security in both the random oracle model and the standard model. This helps us to spot potential security flaws. As a result, we show that a seemingly secure signature scheme (Tan in Int J Security Netw 1(3/4): 237?C242, 2006) is universally forgeable under a known-message attack. In a second step, we discuss how to turn the basic scheme into a fully secure signature scheme. Doing so, we rediscover several known schemes (or slight variants thereof). |
| |
| Keywords: | |
| 本文献已被 SpringerLink 等数据库收录! |
|
