Generalized Key Substitution Attacks on Message Recovery Signatures

Atsushi Fujioka
2017 Tatra Mountains Mathematical Publications  
The generalized key substitution attacks were proposed as a generalization of the key substitution attacks to examine the security of the signature schemes adopted in ISO/IEC (1st CD) 14888-3, which standardizes appendix- -type signature schemes based on the discrete logarithm problem. This paper examines the message recovery signature schemes based on the discrete logarithm problem, adopted in ISO/IEC 9796-3:2006, and shows that all but one scheme are vulnerable to the generalized key substitution attacks.
doi:10.1515/tmmp-2017-0022 fatcat:n2fuyycwqfgktm4ctf6f3nsgye