Generic Double-Authentication Preventing Signatures and a Post-quantum Instantiation

Derler, David; Ramacher, Sebastian; Slamanig, Daniel

doi:10.1007/978-3-030-01446-9_15

Cited by 14 publications

(3 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The DAPS is existential unforgeability under chosen message attacks (EUF − CMA) secure in the random oracle model [32]. As a building block, it can be replaced by other double authentication preventing signature such as the post-quantum instantiation against quantum computer attacks and interested readers can refer to [33].…”

Section: Double Authentication Preventing Signaturesmentioning

confidence: 99%

Blockchain based privacy-preserving software updates with proof-of-delivery for Internet of Things

Zhao

Liu²,

Tian

et al. 2019

Journal of Parallel and Distributed Computing

View full text Add to dashboard Cite

A large number of IoT devices are connected via the Internet. However, most of these IoT devices are generally not perfect-by-design even have security weaknesses or vulnerabilities. Thus, it is essential to update these IoT devices securely, patching their vulnerabilities and protecting the safety of the involved users. Existing studies deliver secure and reliable updates based on blockchain network which serves as the transmission network. However, these approaches could compromise users privacy when updating the IoT devices.In this paper, we propose a new blockchain based privacy-preserving software updates protocol, which delivers secure and reliable updates with an incentive mechanism, as well protects the privacy of involved users. The vendor delivers the updates and it makes a commitment by using a smart contract to provide financial incentive to the transmission nodes who deliver the updates to the IoT devices. A transmission node gets financial incentive by providing a proof-ofdelivery. The transmission node uses double authentication preventing signature (DAPS) to carry out the fair exchange to obtain the proof-of-delivery. Specifically, the transmission node exchanges an attribute-based signature from a IoT device by using DAPS. Then, it uses the attribute-based signature as a proof-ofdelivery to receive financial incentives. Generally, the IoT device has to execute complex computation for an attribute-based signature (ABS). It is intolerable for resource limited devices. We propose a concrete outsourced attribute-based signature (OABS) scheme to resist the weakness. Then, we prove the security of the proposed OABS and the protocol as well. Finally, we implement smart contract in Solidity to demonstrate the validity of the proposed protocol.

show abstract

Section: Double Authentication Preventing Signaturesmentioning

confidence: 99%

Blockchain based privacy-preserving software updates with proof-of-delivery for Internet of Things

Zhao

Liu²,

Tian

et al. 2019

Journal of Parallel and Distributed Computing

View full text Add to dashboard Cite

show abstract

“…In order to provide forward security (and also achieve resilience against LRSL attack and other long-range attacks), Ouroboros Paros [9] and Ouroboros Genesis [22] formalize and realize in the universal composition setting a forward secure digital signature scheme, Algorand [23] considers it as one of future work and implements ephemeral key pairs in its updated full version [24], whereas Snow White [13] and Ouroboros [12] adopt a weak adaptive corruption model and cannot avoid LRSL attack. In addition, several countermeasures have been proposed, such as the trusted execution environments [1], checkpointing mechanism [25], and punishment mechanism revealing the real identity [1], revealing the signing key [26] or slashing the stake [27] of the malicious stakeholder.…”

Section: Related Workmentioning

confidence: 99%

Puncturable Signatures and Applications in Proof-of-Stake Blockchain Protocol

Li,

Xu,

Fan

et al. 2019

Preprint

View full text Add to dashboard Cite

Proof-of-stake blockchain protocols are becoming one of the most promising alternatives to the energy-consuming proof-of-work protocols. However, one particularly critical threat in the PoS setting is the well-known long-range attacks caused by secret key leakage (LRSL attack). Specifically, an adversary can attempt to control/compromise accounts possessing substantial stake at some past moment such that double-spend or erase past transactions, violating the fundamental persistence property of blockchain. Puncturable signatures provide a satisfying solution to construct practical proof-of-stake blockchain resilient to LRSL attack, despite of the fact that existent constructions are not efficient enough for practical deployments. In this paper, we provide an in-depth study of puncturable signatures and explore its applications in the proof-of-stake blockchain. We formalize a security model that allows the adversary for adaptive signing and puncturing queries, and show a construction with efficient puncturing operations based on the Bloom filter data structure and strong Diffie-Hellman assumption. The puncturing functionality we desire is for a particular part of message, like prefix, instead of the whole message. Furthermore, we use puncturable signatures to construct practical proof-of-stake blockchain protocols that are resilient to LRSL attack, while previously the forward-secure signature is used to immunize this attack. We implement our scheme and provide experimental results showing that in comparison with the forward-secure signature, our construction performs substantially better on signature size, signing and verification efficiency, significantly on key update efficiency.

show abstract

“…On the basis of the digital signatures in Refs. [14][15][16], most designed DAPS based on discrete logarithm problems and large integer factorization problems face new challenges because there exist polynomial computational complexity quantum algorithms to solve the two problems, such as Shor algorithm [17,18] . Hence, it is necessary to study some post quantum secure DAPS.…”

Section: Introductionmentioning

confidence: 99%

An Algorithm Substitution Attack on Fiat-Shamir Signatures Based on Lattice

LIU

et al. 2022

Wuhan Univ. J. Nat. Sci.

View full text Add to dashboard Cite

Many evidences have showed that some intelligence agencies (often called big brother) attempt to monitor citizens’ communication by providing coerced citizens a lot of subverted cryptographic algorithms and coercing them to adopt these algorithms. Since legalized services on large number of various applications and system architectures depend on digital signature techniques, in the context some coerced users who use double authentication preventing signatures to design some novel digital signature techniques, have some convincing dissertations to defuse requests from authorities and big brothers creating some corresponding subverted signatures. As rapid progress in quantum computers, National Security Agency advisory memorandum and announcement of National Institute of Standards and Technology procedures from standardization focus on some cryptographic algorithms which are post quantum secure. Motivated by these issues, we design an algorithm substitution attack against Fiat-Shamir family based on lattices (e.g., BLISS, BG, Ring-TESLA, PASSSign and GLP) that are proven post-quantum computational secure. We also show an efficient deterable way to eliminate big brother’s threat by leaking signing keys from signatures on two messages to be public. Security proof shows that our schemes satisfy key extraction, undetectability and deterability. Through parameters analysis and performance evaluation, we demonstrate that our deterring subverted Fiat-Shamir signature is practical, which means that it can be applied to privacy and protection in some system architectures.

show abstract

Generic Double-Authentication Preventing Signatures and a Post-quantum Instantiation

Cited by 14 publications

References 29 publications

Blockchain based privacy-preserving software updates with proof-of-delivery for Internet of Things

Blockchain based privacy-preserving software updates with proof-of-delivery for Internet of Things

Puncturable Signatures and Applications in Proof-of-Stake Blockchain Protocol

An Algorithm Substitution Attack on Fiat-Shamir Signatures Based on Lattice

Contact Info

Product

Resources

About