Paper 2021/377

Attacks and weaknesses of BLS aggregate signatures

Nguyen Thoi Minh Quan

Abstract

This article discusses existing attacks and known weaknesses of BLS aggregate signatures. The goal is clarify the threat model of BLS aggregate signatures, what security properties that they have and do not have. It’s unfortunate that the weaknesses are not documented anywhere in BLS RFC draft v4 [1]. Confusion, ambiguity, misunderstanding all may cause security issues in practice. We hope that this article can help cryptographic practitioners make informed decisions when using BLS aggregate signatures and deploy mitigations at the application/protocol layer because BLS aggregate signatures might not have security guarantees that you need.

Note: detailed discussion in denial-of-service attack

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Preprint. MINOR revision.
Keywords
BLSaggregate signature
Contact author(s)
msuntmquan @ gmail com
History
2021-03-23: last of 2 revisions
2021-03-22: received
See all versions
Short URL
https://ia.cr/2021/377
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2021/377,
      author = {Nguyen Thoi Minh Quan},
      title = {Attacks and weaknesses of {BLS} aggregate signatures},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/377},
      year = {2021},
      url = {https://eprint.iacr.org/2021/377}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.