CryptoDB
A Key Substitution Attack on SFLASH^{v3}
Authors: | |
---|---|
Download: | |
Abstract: | A practical key substitution attack on SFLASH^{v3} is described: Given a valid (message, signature) pair (m,\sigma) for some public key v_0, one can derive another public key v_1 (along with matching secret data) such that (m,\sigma) is also valid for v_1. The computational effort needed for finding such a `duplicate' key is comparable to the effort needed for ordinary key generation. |
BibTeX
@misc{eprint-2003-11958, title={A Key Substitution Attack on SFLASH^{v3}}, booktitle={IACR Eprint archive}, keywords={public-key cryptography / digital signatures, cryptanalysis}, url={http://eprint.iacr.org/2003/245}, note={ steinwan@ira.uka.de 12382 received 26 Nov 2003}, author={Willi Geiselmann and Rainer Steinwandt}, year=2003 }