Cryptology ePrint Archive: Report 2003/220

A short comment on the affine parts of SFLASH^{v3}

Willi Geiselmann and Rainer Steinwandt

Abstract: In [http://eprint.iacr.org/2003/211/] SFLASH^{v3} is presented, which supersedes SFLASH^{v2}, one of the digital signature schemes in the NESSIE Portfolio of recommended cryptographic primitives. We show that a known attack against the affine parts of SFLASH^{v1} and SFLASH^{v2} carries over immediately to the new version SFLASH^{v3}: The 861 bit representing the affine parts of the secret key can easily be derived from the public key alone.

Category / Keywords: public-key cryptography / digital signatures, cryptanalysis

Date: received 10 Oct 2003

Contact author: steinwan at ira uka de

Available format(s): Postscript (PS) | Compressed Postscript (PS.GZ) | PDF | BibTeX Citation

Version: 20031010:161259 (All versions of this report)

Short URL: ia.cr/2003/220