Abstract
We introduce a new class of computational problems which we call the "one-more-RSA-inversion" problems. Our main result is that two problems in this class, which we call the chosen-target and known-target inversion problems, respectively, have polynomially equivalent computational complexity. We show how this leads to a proof of security for Chaum's RSA-based blind signature scheme in the random oracle model based on the assumed hardness of either of these problems. We define and prove analogous results for "one-more-discrete-logarithm" problems. Since the appearence of the preliminary version of this paper, the new problems we have introduced have found other uses as well. © 2003 International Association for Cryptologic Research.
Author supplied keywords
Cite
CITATION STYLE
Bellare, M., Namprempre, C., Pointcheval, D., & Semanko, M. (2003). The one-more-RSA-inversion problems and the security of chaum’s blind signature scheme. Journal of Cryptology, 16(3), 185–215. https://doi.org/10.1007/s00145-002-0120-1
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
