Paper 2008/316

Signing a Linear Subspace: Signature Schemes for Network Coding

Dan Boneh, David Freeman, Jonathan Katz, and Brent Waters

Abstract

Network coding offers increased throughput and improved robustness to random faults in completely decentralized networks. In contrast to traditional routing schemes, however, network coding requires intermediate nodes to modify data packets en route; for this reason, standard signature schemes are inapplicable and it is a challenge to provide resilience to tampering by malicious nodes. Here, we propose two signature schemes that can be used in conjunction with network coding to prevent malicious modification of data. In particular, our schemes can be viewed as signing linear subspaces in the sense that a signature on V authenticates exactly those vectors in V. Our first scheme is homomorphic and has better performance, with both public key size and per-packet overhead being constant. Our second scheme does not rely on random oracles and uses weaker assumptions. We also prove a lower bound on the length of signatures for linear subspaces showing that both of our schemes are essentially optimal in this regard.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. To appear in PKC 2009
Keywords
signature schemesnetwork codingpairing-based cryptography
Contact author(s)
jkatz @ cs umd edu
History
2008-12-23: last of 4 revisions
2008-08-02: received
See all versions
Short URL
https://ia.cr/2008/316
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2008/316,
      author = {Dan Boneh and David Freeman and Jonathan Katz and Brent Waters},
      title = {Signing a Linear Subspace: Signature Schemes for Network Coding},
      howpublished = {Cryptology {ePrint} Archive, Paper 2008/316},
      year = {2008},
      url = {https://eprint.iacr.org/2008/316}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.