Paper 2024/1669
The Role of Message-Bound Signatures for the Beyond UnForgeability Features and Weak Keys
Abstract
In the present work, we establish a new relationship among the Beyond UnForgeability Features (BUFF) introduced by Cremers et al. (SP’21). There, the BUFF notions have been shown to be independent of one another. On the other hand, the analysis by Aulbach et al. (PQCrypto’24) reveals that one of the BUFF notions—message-bound signatures (MBS)—is achieved by most schemes. To achieve BUFF security, there is the generic BUFF transform that achieves all the beyond unforgeability features. The BUFF transform works by signing a hash of the public key and the message (rather than just the message), and appending this hash value to the signature. The need for appending the hash comes from the intuitive notion of weak keys that verify all message-signature pairs. We explain that MBS security effectively rules out the possibility of weak keys. This opens the possibility for a more efficient transform to achieve BUFF. We show that this transform, first introduced by Pornin and Stern (ACNS’05), indeed suffices to achieve BUFF security, if the original signature schemes satisfies MBS. Only in the malicious setting of exclusive ownership, we present an attack on UOV, even after applying the PS-3 transform.
Metadata
- Available format(s)
-
PDF
- Category
- Public-key cryptography
- Publication info
- Published elsewhere. ISC 2024
- Keywords
- BUFFweak keyssignatures schemes
- Contact author(s)
-
samed duzlu @ ur de
patrick struck @ uni kn - History
- 2024-10-18: approved
- 2024-10-15: received
- See all versions
- Short URL
- https://ia.cr/2024/1669
- License
-
CC BY-NC
BibTeX
@misc{cryptoeprint:2024/1669,
author = {Samed Düzlü and Patrick Struck},
title = {The Role of Message-Bound Signatures for the Beyond {UnForgeability} Features and Weak Keys},
howpublished = {Cryptology {ePrint} Archive, Paper 2024/1669},
year = {2024},
url = {https://eprint.iacr.org/2024/1669}
}
