A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2004; you can also visit the original URL.
The file type is application/pdf
.
Cryptanalysis of the NTRU Signature Scheme (NSS) from Eurocrypt 2001
[chapter]
2001
Lecture Notes in Computer Science
In 1996, a new cryptosystem called NTRU was introduced, related to the hardness of finding short vectors in specific lattices. At Eurocrypt 2001, the NTRU Signature Scheme (NSS), a signature scheme apparently related to the same hard problem, was proposed. In this paper, we show that the problem on which NSS relies is much easier than anticipated, and we describe an attack that allows efficient forgery of a signature on any message. Additionally, we demonstrate that a transcript of signatures
doi:10.1007/3-540-45682-1_1
fatcat:d4tzkyo5vjcpfj5broxct5mcyu