Paper 2023/303
Fusion One-Time Non-Interactively-Aggregatable Digital Signatures From Lattices
Abstract
We present Fusion, a post-quantum one-time digital signature scheme with non-interactive aggregation with security resting on the short integer solution problem over ideal lattices. Fusion is structurally similar to CRYSTALS-Dilithium, but Fusion is based upon the aggregatable one-time lattice-based scheme by Boneh and Kim. Fusion parameters conservatively target at least $128$ bits of security against forgery, taking tightness gaps into account, and with tighter bounds than the BK scheme. Aggregate Fusion signatures are logarithmically sized in the number of keys, so aggregating enough signatures can be more efficient than stacking Dilithium or Falcon signatures.
Note: Fix typo in abstract, add funding acknowledgement.
Metadata
- Available format(s)
- Category
- Cryptographic protocols
- Publication info
- Preprint.
- Keywords
- one-time signaturelatticering short integer solutionfusionaggregatable signaturepost-quantum
- Contact author(s)
-
brandon @ geometrylabs io
aaron @ cypherstack com - History
- 2023-03-01: revised
- 2023-03-01: received
- See all versions
- Short URL
- https://ia.cr/2023/303
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2023/303, author = {Brandon Goodell and Aaron Feickert}, title = {Fusion One-Time Non-Interactively-Aggregatable Digital Signatures From Lattices}, howpublished = {Cryptology {ePrint} Archive, Paper 2023/303}, year = {2023}, url = {https://eprint.iacr.org/2023/303} }