Paper 2021/872

W-OTS(+) up my Sleeve! A Hidden Secure Fallback for Cryptocurrency Wallets

David Chaum, Mario Larangeira, Mario Yaksetig, and William Carter

Abstract

We introduce a new key generation mechanism where users can generate a "back up key'', securely nested inside the secret key of a signature scheme. Our main motivation is that in case of leakage of the secret key, established techniques based on zero-knowledge proofs of knowledge are void since the key becomes public. On the other hand, the "back up key'', which is secret, can be used to generate a "proof of ownership'', i.e., only the real owner of this secret key can generate such a proof. To the best of our knowledge, this extra level of security is novel, and could have already been used in practice, if available, in digital wallets for cryptocurrencies that suffered massive leakage of account private keys. In this work, we formalize the notion of "Proof of Ownership'' and "Fallback'' as new properties. Then, we introduce our construction, which is compatible with major designs for wallets based on ECDSA, and adds a W-OTS(+) signing key as a "back up key''. Thus offering a quantum secure fallback. This design allows the hiding of any quantum secure signature key pair, and is not exclusive to W-OTS(+). Finally, we briefly discuss the construction of multiple generations of proofs of ownership.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. Minor revision. ACNS 2021: Applied Cryptography and Network Security
DOI
10.1007/978-3-030-78372-3_8
Keywords
digital currencieshash-based signaturespost-quantum cryptography
Contact author(s)
mario yaksetig @ fe up pt
History
2021-06-29: last of 2 revisions
2021-06-29: received
See all versions
Short URL
https://ia.cr/2021/872
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/872,
      author = {David Chaum and Mario Larangeira and Mario Yaksetig and William Carter},
      title = {W-{OTS}(+) up my Sleeve! A Hidden Secure Fallback for Cryptocurrency Wallets},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/872},
      year = {2021},
      doi = {10.1007/978-3-030-78372-3_8},
      url = {https://eprint.iacr.org/2021/872}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.