Confined Guessing: New Signatures From Standard Assumptions

被引：0

作者：

Florian Böhl

Dennis Hofheinz

Tibor Jager

Jessica Koch

Christoph Striecks

机构：

[1] Karlsruhe Institute of Technology,

[2] Ruhr-Universität Bochum,undefined

来源：

Journal of Cryptology | 2015年 / 28卷

关键词：

Digital signatures; CDH assumption; Pairing-friendly groups; RSA assumption; SIS assumption;

D O I：

暂无

中图分类号：

学科分类号：

摘要：

We put forward a new technique to construct very efficient and compact signature schemes. Our technique combines several instances of only a mildly secure signature scheme to obtain a fully secure scheme. Since the mild security notion we require is much easier to achieve than full security, we can combine our strategy with existing techniques to obtain a number of interesting new (stateless and fully secure) signature schemes. Concretely, we get (1) A scheme based on the computational Diffie–Hellman (CDH) assumption in pairing-friendly groups. Signatures contain O(1)\documentclass[12pt]{minimal} \usepackage{amsmath} \usepackage{wasysym} \usepackage{amsfonts} \usepackage{amssymb} \usepackage{amsbsy} \usepackage{mathrsfs} \usepackage{upgreek} \setlength{\oddsidemargin}{-69pt} \begin{document}$$\mathbf {O}(1)$$\end{document} and verification keys O(logk)\documentclass[12pt]{minimal} \usepackage{amsmath} \usepackage{wasysym} \usepackage{amsfonts} \usepackage{amssymb} \usepackage{amsbsy} \usepackage{mathrsfs} \usepackage{upgreek} \setlength{\oddsidemargin}{-69pt} \begin{document}$$\mathbf {O}(\log k)$$\end{document} group elements, where k\documentclass[12pt]{minimal} \usepackage{amsmath} \usepackage{wasysym} \usepackage{amsfonts} \usepackage{amssymb} \usepackage{amsbsy} \usepackage{mathrsfs} \usepackage{upgreek} \setlength{\oddsidemargin}{-69pt} \begin{document}$$k$$\end{document} is the security parameter. Our scheme is the first fully secure CDH-based scheme with such compact verification keys. (2) A scheme based on the (nonstrong) RSA assumption in which both signatures and verification keys contain O(1)\documentclass[12pt]{minimal} \usepackage{amsmath} \usepackage{wasysym} \usepackage{amsfonts} \usepackage{amssymb} \usepackage{amsbsy} \usepackage{mathrsfs} \usepackage{upgreek} \setlength{\oddsidemargin}{-69pt} \begin{document}$$\mathbf {O}(1)$$\end{document} group elements. Our scheme is significantly more efficient than existing RSA-based schemes. (3) A scheme based on the Short Integer Solutions (SIS) assumption. Signatures contain O(log(k)·m)\documentclass[12pt]{minimal} \usepackage{amsmath} \usepackage{wasysym} \usepackage{amsfonts} \usepackage{amssymb} \usepackage{amsbsy} \usepackage{mathrsfs} \usepackage{upgreek} \setlength{\oddsidemargin}{-69pt} \begin{document}$$\mathbf {O}(\log (k)\cdot m)$$\end{document} and verification keys O(n·m)Zp\documentclass[12pt]{minimal} \usepackage{amsmath} \usepackage{wasysym} \usepackage{amsfonts} \usepackage{amssymb} \usepackage{amsbsy} \usepackage{mathrsfs} \usepackage{upgreek} \setlength{\oddsidemargin}{-69pt} \begin{document}$$\mathbf {O}(n\cdot m) {\mathbb {Z}}_p$$\end{document}-elements, where p\documentclass[12pt]{minimal} \usepackage{amsmath} \usepackage{wasysym} \usepackage{amsfonts} \usepackage{amssymb} \usepackage{amsbsy} \usepackage{mathrsfs} \usepackage{upgreek} \setlength{\oddsidemargin}{-69pt} \begin{document}$$p$$\end{document} may be polynomial in k\documentclass[12pt]{minimal} \usepackage{amsmath} \usepackage{wasysym} \usepackage{amsfonts} \usepackage{amssymb} \usepackage{amsbsy} \usepackage{mathrsfs} \usepackage{upgreek} \setlength{\oddsidemargin}{-69pt} \begin{document}$$k$$\end{document}, and n,m\documentclass[12pt]{minimal} \usepackage{amsmath} \usepackage{wasysym} \usepackage{amsfonts} \usepackage{amssymb} \usepackage{amsbsy} \usepackage{mathrsfs} \usepackage{upgreek} \setlength{\oddsidemargin}{-69pt} \begin{document}$$n,m$$\end{document} denote the usual SIS matrix dimensions. Compared to state-of-the-art SIS-based schemes, this gives very small verification keys, at the price of slightly larger signatures. In all cases, the involved constants are small, and the arising schemes provide significant improvements upon state-of-the-art schemes. The only price we pay is a rather large (polynomial) loss in the security reduction. However, this loss can be significantly reduced at the cost of an additive term in signature and verification key size.

引用

页码：176 / 208

页数：32

共 50 条

[1] Confined Guessing: New Signatures From Standard Assumptions
Boehl, Florian
Hofheinz, Dennis
Koch, Jessica
Striecks, Christoph
Jager, Tibor
[J]. JOURNAL OF CRYPTOLOGY, 2015, 28 (01) : 176 - 208
[2] Practical Signatures from Standard Assumptions
Boehl, Florian
Hofheinz, Dennis
Jager, Tibor
Koch, Jessica
Seo, Jae Hong
Striecks, Christoph
[J]. ADVANCES IN CRYPTOLOGY - EUROCRYPT 2013, 2013, 7881 : 461 - 485
[3] Structure-Preserving Signatures from Standard Assumptions, Revisited
Kiltz, Eike
Pan, Jiaxin
Wee, Hoeteck
[J]. ADVANCES IN CRYPTOLOGY, PT II, 2015, 9216 : 275 - 295
[4] Weakly Secure Equivalence-Class Signatures from Standard Assumptions
Fuchsbauer, Georg
Gay, Romain
[J]. PUBLIC-KEY CRYPTOGRAPHY - PKC 2018, PT II, 2018, 10770 : 153 - 183
[5] Structure-Preserving Signatures on Equivalence Classes from Standard Assumptions
Khalili, Mojtaba
Slamanig, Daniel
Dakhilalian, Mohammad
[J]. ADVANCES IN CRYPTOLOGY - ASIACRYPT 2019, PT III, 2019, 11923 : 63 - 93
[6] Convertible Nominative Signatures from Standard Assumptions without Random Oracles
Hanaoka, Goichiro
Schuldt, Jacob
[J]. IEICE TRANSACTIONS ON FUNDAMENTALS OF ELECTRONICS COMMUNICATIONS AND COMPUTER SCIENCES, 2016, E99A (06) : 1107 - 1121
[7] Threshold Raccoon: Practical Threshold Signatures from Standard Lattice Assumptions
del Pino, Rafael
Katsumata, Shuichi
Maller, Mary
Mouhartem, Fabrice
Prest, Thomas
Saarinen, Markku-Juhani
[J]. ADVANCES IN CRYPTOLOGY, PT II, EUROCRYPT 2024, 2024, 14652 : 219 - 248
[8] Ring Signatures: Logarithmic-Size, No Setup-from Standard Assumptions
Backes, Michael
Doettling, Nico
Hanzlik, Lucjan
Kluczniak, Kamil
Schneider, Jonas
[J]. ADVANCES IN CRYPTOLOGY - EUROCRYPT 2019, PT III, 2019, 11478 : 281 - 311
[9] Practical Round-Optimal Blind Signatures in the ROM from Standard Assumptions
Katsumata, Shuichi
Reichle, Michael
Sakai, Yusuke
[J]. ADVANCES IN CRYPTOLOGY, ASIACRYPT 2023, PT II, 2023, 14439 : 383 - 417
[10] Signatures of knowledge for Boolean circuits under standard assumptions
Baghery, Karim
Gonzalez, Alonso
Pindado, Zaira
Rafols, Carla
[J]. THEORETICAL COMPUTER SCIENCE, 2022, 916 : 86 - 110

← 1 2 3 4 5 →