Paper 2002/074

How to repair ESIGN

Louis Granboulan

Abstract

The ESIGN signature scheme was provided with an inadequate proof of security. We propose two techniques to repair the scheme, which we name ESIGN-D and ESIGN-R. Another improvement of ESIGN is encouraged, where the public key is hashed together with the message. This allows to have a security proof in the multi key setting. Additionally, the lower security of ESIGN compared to RSA-PSS leads to suggest that a common public key is used for ESIGN and RSA-PSS, leaving to the signer the choice between fast signature or better security.

Note: The last revision includes a security proof based on claw-free permutations and a novel security assumption: Claw-AER.

Metadata
Available format(s)
PS
Category
Public-key cryptography
Publication info
Published elsewhere. SCN'02 - Third Conference on Security in Communication Networks
Keywords
digital signature schemeproven securitydesign techniques.
Contact author(s)
Louis Granboulan @ ens fr
History
2002-09-16: last of 4 revisions
2002-06-07: received
See all versions
Short URL
https://ia.cr/2002/074
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2002/074,
      author = {Louis Granboulan},
      title = {How to repair ESIGN},
      howpublished = {Cryptology ePrint Archive, Paper 2002/074},
      year = {2002},
      note = {\url{https://eprint.iacr.org/2002/074}},
      url = {https://eprint.iacr.org/2002/074}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.