Abstract
This paper presents MQDSS, the first signature scheme with a security reduction based on the problem of solving a multivariate system of quadratic equations (MQ problem). In order to construct this scheme we give a new security reduction for the Fiat-Shamir transform from a large class of 5-pass identification schemes and show that a previous attempt from the literature to obtain such a proof does not achieve the desired goal. We give concrete parameters for MQDSS and provide a detailed security analysis showing that the resulting instantiation MQDSS-31-64 achieves 128 bits of post-quantum security. Finally, we describe an optimized implementation of MQDSS-31-64 for recent Intel processors with full protection against timing attacks and report benchmarks of this implementation.
Original language | English |
---|---|
Title of host publication | Advances in Cryptology - ASIACRYPT 2016 - 22nd International Conference on the Theory and Application of Cryptology and Information Security, Proceedings |
Publisher | Springer |
Pages | 135-165 |
Number of pages | 31 |
ISBN (Print) | 9783662538890 |
DOIs | |
Publication status | Published - 2016 |
Event | 22nd International Conference on the Theory and Application of Cryptology and Information Security, ASIACRYPT 2016 - Hanoi, Viet Nam Duration: 4 Dec 2016 → 8 Dec 2016 Conference number: 22 |
Publication series
Name | Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) |
---|---|
Publisher | Springer |
Volume | 10032 |
ISSN (Print) | 0302-9743 |
ISSN (Electronic) | 1611-3349 |
Conference
Conference | 22nd International Conference on the Theory and Application of Cryptology and Information Security, ASIACRYPT 2016 |
---|---|
Abbreviated title | ASIACRYPT 2016 |
Country/Territory | Viet Nam |
City | Hanoi |
Period | 4/12/16 → 8/12/16 |
Keywords
- 5-pass identification scheme
- Fiat-Shamir
- Post-quantum cryptography
- Vectorized implementation