Cover Image

New identified strategies to forge multivariate signature schemes

A rogue certificate authority (RCA) is a dishonest entity that has the trust of web browsers and users to produce valid key pairs which are vulnerable. This work analyses two acknowledged post-quantum secure Multivariate Quadratic Problem (MQP) based signature schemes, namely the UOV and Rainbow sig...

Full description

Saved in:
Bibliographic Details
Main Authors: Abdul Jamal, Nurul Amiera Sakinah, Kamel Ariffin, Muhammad Rezal, Sapar, Siti Hasana, Abdullah, Kamilah
Format: Article
Published: MDPI AG 2022
Online Access:http://psasir.upm.edu.my/id/eprint/102304/
https://www.mdpi.com/2073-8994/14/11/2368
Tags: Add Tag
No Tags, Be the first to tag this record!
id my.upm.eprints.102304
record_format eprints
spelling my.upm.eprints.1023042023-05-22T08:15:05Z http://psasir.upm.edu.my/id/eprint/102304/ New identified strategies to forge multivariate signature schemes Abdul Jamal, Nurul Amiera Sakinah Kamel Ariffin, Muhammad Rezal Sapar, Siti Hasana Abdullah, Kamilah A rogue certificate authority (RCA) is a dishonest entity that has the trust of web browsers and users to produce valid key pairs which are vulnerable. This work analyses two acknowledged post-quantum secure Multivariate Quadratic Problem (MQP) based signature schemes, namely the UOV and Rainbow signature schemes that obtain their key pair from a potential RCA methodology. We revisit two and provide a novel RCA methodology that would enable adversaries to forge UOV and Rainbow signatures. We also lay out two strategies to identify whether the public parameters are generated by the first two methodologies. To this end, strategies to identify the third strategy remain elusive. As such, the UOV and Rainbow schemes remain vulnerable to forgery if it was forged via the third methodology. MDPI AG 2022-11-10 Article PeerReviewed Abdul Jamal, Nurul Amiera Sakinah and Kamel Ariffin, Muhammad Rezal and Sapar, Siti Hasana and Abdullah, Kamilah (2022) New identified strategies to forge multivariate signature schemes. Symmetry, 14 (11). art. no. 2368. pp. 1-18. ISSN 2073-8994 https://www.mdpi.com/2073-8994/14/11/2368 10.3390/sym14112368
institution Universiti Putra Malaysia
building UPM Library
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universiti Putra Malaysia
content_source UPM Institutional Repository
url_provider http://psasir.upm.edu.my/
description A rogue certificate authority (RCA) is a dishonest entity that has the trust of web browsers and users to produce valid key pairs which are vulnerable. This work analyses two acknowledged post-quantum secure Multivariate Quadratic Problem (MQP) based signature schemes, namely the UOV and Rainbow signature schemes that obtain their key pair from a potential RCA methodology. We revisit two and provide a novel RCA methodology that would enable adversaries to forge UOV and Rainbow signatures. We also lay out two strategies to identify whether the public parameters are generated by the first two methodologies. To this end, strategies to identify the third strategy remain elusive. As such, the UOV and Rainbow schemes remain vulnerable to forgery if it was forged via the third methodology.
format Article
author Abdul Jamal, Nurul Amiera Sakinah
Kamel Ariffin, Muhammad Rezal
Sapar, Siti Hasana
Abdullah, Kamilah
spellingShingle Abdul Jamal, Nurul Amiera Sakinah
Kamel Ariffin, Muhammad Rezal
Sapar, Siti Hasana
Abdullah, Kamilah
New identified strategies to forge multivariate signature schemes
author_facet Abdul Jamal, Nurul Amiera Sakinah
Kamel Ariffin, Muhammad Rezal
Sapar, Siti Hasana
Abdullah, Kamilah
author_sort Abdul Jamal, Nurul Amiera Sakinah
title New identified strategies to forge multivariate signature schemes
title_short New identified strategies to forge multivariate signature schemes
title_full New identified strategies to forge multivariate signature schemes
title_fullStr New identified strategies to forge multivariate signature schemes
title_full_unstemmed New identified strategies to forge multivariate signature schemes
title_sort new identified strategies to forge multivariate signature schemes
publisher MDPI AG
publishDate 2022
url http://psasir.upm.edu.my/id/eprint/102304/
https://www.mdpi.com/2073-8994/14/11/2368
_version_ 1768009442770550784
score 13.211869

Similar Items