[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Gzz-commits] manuscripts/Sigs article.rst
|
From: |
Benja Fallenstein |
|
Subject: |
[Gzz-commits] manuscripts/Sigs article.rst |
|
Date: |
Mon, 19 May 2003 16:08:55 -0400 |
CVSROOT: /cvsroot/gzz
Module name: manuscripts
Changes by: Benja Fallenstein <address@hidden> 03/05/19 16:08:55
Modified files:
Sigs : article.rst
Log message:
more
CVSWeb URLs:
http://savannah.gnu.org/cgi-bin/viewcvs/gzz/manuscripts/Sigs/article.rst.diff?tr1=1.130&tr2=1.131&r1=text&r2=text
Patches:
Index: manuscripts/Sigs/article.rst
diff -u manuscripts/Sigs/article.rst:1.130 manuscripts/Sigs/article.rst:1.131
--- manuscripts/Sigs/article.rst:1.130 Mon May 19 15:42:02 2003
+++ manuscripts/Sigs/article.rst Mon May 19 16:08:55 2003
@@ -4,7 +4,7 @@
Abstract:
-We propose an new digital signature scheme based on
+We propose a digital signature scheme based on
recursive application of an underlying
one-time signature scheme to sign
nodes along a single path through a virtual tree of
@@ -20,8 +20,8 @@
Our scheme has several advantages:
signatures are
-existentially unforgeable in adaptive chosen message attack.
-Because the security of the scheme is based only on
+existentially unforgeable in adaptive chosen message attack,
+and because the security of the scheme is based only on
one-way functions and a random oracle, i.e.
no trapdoor functions are used,
the keys and signatures remain valid
@@ -124,14 +124,13 @@
One-time Signature Key Boosting
===============================
-
-- based on underlying $q$-time scheme --- usually Merkle hash tree
- of one-time scheme.
-
-- req. also random oracle
-
-
-
+Our scheme is a construction based on 1) a `$q$`-time signature
+scheme, and 2) a random oracle function. We generally assume
+that the random oracle is the same hash function (e.g. SHA-1)
+as in the underlying signature scheme. Usually, this scheme
+will be a Merkle hash tree [XXX] of Merkle
+one-time signatures [XXX]. Other choices such as BiBa [XXX]
+are possible, but not evaluated in this article.
The private key for this scheme is simply a private key
for the underlying one-time-signature primitive,
- [Gzz-commits] manuscripts/Sigs article.rst, (continued)
- [Gzz-commits] manuscripts/Sigs article.rst, Benja Fallenstein, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Benja Fallenstein, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Benja Fallenstein, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Benja Fallenstein, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst,
Benja Fallenstein <=
- [Gzz-commits] manuscripts/Sigs article.rst, Benja Fallenstein, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Benja Fallenstein, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19
- [Gzz-commits] manuscripts/Sigs article.rst, Tuomas J. Lukka, 2003/05/19