Cryptology ePrint Archive: Report 2016/503

MQSAS - A Multivariate Sequential Aggregate Signature Scheme

Rachid El Bansarkhani and Mohamed Saied Emam Mohamed and Albrecht Petzoldt

Abstract: (Sequential) Aggregate signature schemes enable a group of users $u_1, \dots, u_k$ with messages $m_1, \dots, m_k$ to produce a single signature $\Sigma$ which states the integrity and authenticity of all the messages $m_1, \dots, m_k$. The length of the signature $\Sigma$ is thereby significantly shorter than a concatenation of individual signatures. Therefore, aggregate signatures can improve the efficiency of numerous applications, e.g. the BGPsec protocol of Internet routing and the development of new efficient aggregate signature schemes is an important task for cryptographic research. On the other hand, multivariate cryptography offers a huge variety of practical signature schemes. However, there is a lack of multivariate signature schemes with special properties such as aggregate signature schemes. In this paper, we propose a technique to extend the HFEv- signature scheme to a sequential aggregate signature scheme. By doing so, we create the first multivariate signature scheme of this kind. Our scheme is very efficient and offers compression rates that outperform current lattice-based constructions for practical parameters.

Category / Keywords: public-key cryptography / Multivariate Cryptography, HFEv-, Sequential Aggregate Signatures

Date: received 23 May 2016

Contact author: mohamed at cdc informatik tu-darmstadt de

Available format(s): PDF | BibTeX Citation

Version: 20160523:140225 (All versions of this report)

Short URL: ia.cr/2016/503

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]