T. Malkin, D. Micciancio, and S. K. Miner. Ecient generic forward-secure signatures with an unbounded number of time periods. In Advances in Cryptology { EUROCRYPT '02, volume 2332 of LNCS. Springer-Verlag, 2002.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....solutions for the latter are (thus far) much more ecient. The choice of which type of scheme to use therefore depends heavily on an assumption about the (physical) security of the server. 1. 1 Our Contributions Much work has focused on the design and analysis of forward secure signature schemes [5, 20, 2, 16, 21] and, more recently, a forward secure public key encryption scheme has been constructed [8] Key insulated public key encryption schemes [11, 7, 6] and signature schemes [12] are also known. Thus far, however, only constructions of intrusion resilient signature schemes [17, 15] have been ....

T. Malkin, D. Micciancio, and S. Miner. Ecient Generic Forward-Secure Signatures with an Unbounded Number of Time Periods. Eurocrypt 2002.

....minimizing the e ect of partial exposures. In this paper, however, we focus on the total and inconspicuous exposures of all the secrets within the system at the time of the exposure. For such exposures, only forward security has being de ned [And97,BM99] and achieved [And97,BM99,Kra00,AR00,IR01,MMM02,Itk02,KR02] previously. None of these approaches provided any help in detecting whether an exposure occurred. Fail stop signatures. Tamper evident signatures should be distinguished from the fail stop signatures [PP97] the fail stop signatures do not address the issue of dealing with an ....

....This may not be needed, if these signatures have been veri ed by KESig:Vf, as suggested in the above footnote. Gene Itkis Tree based construction. A similar synchronous tamper evident scheme can be obtained using tree based constructions for forward secure and intrusion resilient schemes [BM99,MMM02,Itk02] Indeed these constructions served as one of the inspirations for this work. While not as ecient as the previous synchronous tamper evident scheme, the tree based construction below provides a somewhat more exible synchronicity restriction than the above scheme as well as some intuition ....

[Article contains additional citation context not shown here]

Tal Malkin, Daniele Micciancio, and Sara Miner. Ecient generic forward-secure signatures with an unbounded number of time periods. In Knudsen [Knu02].

....[4] The idea is to divide the validity time of a key pair into time periods. At the end of each time period, the signer derives the new signing key from the current one in a one way fashion, and then erases the current signing key forever. Several schemes have been proposed in the past few years [1, 5, 10, 14, 13, 15, 18]. They can be classi ed into two categories. The rst category are concrete schemes [1, 5, 10, 13, 18] The second category are schemes of generic constructions that take ordinary signature schemes as building blocks [14, 15] Since they depend on how the ordinary signature scheme is ....

....schemes have been proposed in the past few years [1, 5, 10, 14, 13, 15, 18] They can be classi ed into two categories. The rst category are concrete schemes [1, 5, 10, 13, 18] The second category are schemes of generic constructions that take ordinary signature schemes as building blocks [14, 15]. Since they depend on how the ordinary signature scheme is instantiated, it is dicult to compare them directly with the schemes in the rst category. Our new scheme belongs to the rst category, and will be compared with [1, 5, 10, 13] 18] is for group signature. Our scheme is very ecient in ....

[Article contains additional citation context not shown here]

T. Malkin, D. Micciancio, and S. Miner. Ecient generic forward-secure signature with an unbounded number of time period. Lecture Notes in Computer Science 2332, Advances in Cryptology: Proceedings of Eurocrypt'02, pages 400-417, Amsterdam, The Netherlands, April 2002.

....has all relevant information) even though no explicit key exposures happen during those periods. Forward secure signatures, however, prevent the adversary from signing messages associated with prior time periods. Many improved constructions of forward secure signatures have subsequently appeared [1, 29, 26, 32]. Our model uses a stronger assumption in that we allow for (a limited amount of) physicallysecure storage which is used exclusively for key updates and is not used for the actual cryptographic computations. As a consequence, we are able to obtain a much stronger level of security in that the ....

T. Malkin, D. Micciancio, and S. Miner. Ecient Generic Forward-Secure Signatures With an Unbounded Number of Time Periods. Eurocrypt '02, to appear.

No context found.

T. Malkin, D. Micciancio, and S. K. Miner. Ecient generic forward-secure signatures with an unbounded number of time periods. In Advances in Cryptology { EUROCRYPT '02, volume 2332 of LNCS. Springer-Verlag, 2002.

No context found.

Tal Malkin, Daniele Micciancio, and Sara Miner. Ecient generic forward-secure signatures with an unbounded number of time periods. In Lars Knudsen, editor, Advances in Cryptology|EUROCRYPT 2002, Lecture Notes in Computer Science. Springer-Verlag, 28 April{2 May 2002.

No context found.

T. Malkin, D. Micciancio, and S. Miner. Ecient Generic Forward-Secure Signatures with an Unbounded Number of Time Periods. Eurocrypt 2002.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC