How to Achieve a McEliece-Based Digital Signature Scheme

13 years 8 months ago

Download www-roc.inria.fr

Abstract. McEliece is one of the oldest known public key cryptosystems. Though it was less widely studied than RSA, it is remarkable that all known attacks are still exponential. It is widely believed that code-based cryptosystems like McEliece do not allow practical digital signatures. In the present paper we disprove this belief and show a way to build a practical signature scheme based on coding theory. Its security can be reduced in the random oracle model to the well-known syndrome decoding problem and the distinguishability of permuted binary Goppa codes from a random code. For example we propose a scheme with signatures of 81-bits and a binary security workfactor of 283 .

Nicolas Courtois, Matthieu Finiasz, Nicolas Sendri

Real-time Traffic

ASIACRYPT 2001 | Cryptology | Permuted Binary Goppa | Practical Digital Signatures | Public Key Cryptosystems |

claim paper

» Undeniable Signatures

» How to Strengthen Any Weakly Unforgeable Signature into a Strongly Unforgeable Signature

» IdentityBased Partial Message Recovery Signatures or How to Shorten IDBased Signatures

» Group Blind Digital Signatures A Scalable Solution to Electronic Cash

» How to Break and Repair a Universally Composable Signature Functionality

» Multiplicative ForwardSecure Threshold Signature Scheme

» Security Arguments for Digital Signatures and Blind Signatures

» Adopting Redundancy Techniques for Multicast Stream Authentication

Post Info
More Details (n/a)

Added	28 Jul 2010
Updated	28 Jul 2010
Type	Conference
Year	2001
Where	ASIACRYPT
Authors	Nicolas Courtois, Matthieu Finiasz, Nicolas Sendrier

Comments (0)

Sciweavers

How to Achieve a McEliece-Based Digital Signature Scheme

ASIACRYPT 2001 | Cryptology | Permuted Binary Goppa | Practical Digital Signatures | Public Key Cryptosystems |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers