Paper 2007/357

A Note on Signature Standards

Michael Braun and Anton Kargl

Abstract

A major security goal for signature schemes is to prevent an adversary from producing new valid signatures even though he can receive valid signatures of any messages from the legitimate signer. On the one hand the security of elliptic curve signature schemes, as ECDSA, ECGDSA, or ECKCDSA, is based on the elliptic curve discrete logarithm problem, respectively on the security of the used hash function. On the other hand some special cases for ephemeral keys and signature components also have to be excluded to guarantee the security of the signature scheme. In this paper we are going to investigate some exceptional cases, which are not covered by current signature generation algorithms, but leak information on the private signature key.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
Digital SignaturesECDSAECGDSAECKCDSA
Contact author(s)
anton kargl @ siemens com
History
2007-09-13: received
Short URL
https://ia.cr/2007/357
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2007/357,
      author = {Michael Braun and Anton Kargl},
      title = {A Note on Signature Standards},
      howpublished = {Cryptology {ePrint} Archive, Paper 2007/357},
      year = {2007},
      url = {https://eprint.iacr.org/2007/357}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.