Cryptanalysis of ISO/IEC 9796-1

D. Coppersmith; J. S. Coron; F. Grieu; S. Halevi; C. Jutla; D. Naccache; J. P. Stern

Journal ArticleOPEN ACCESS

Cryptanalysis of ISO/IEC 9796-1

Coppersmith D
Coron J
Grieu F
et al.

Journal of Cryptology (2008) 21(1) 27-51

DOI: 10.1007/s00145-007-9007-5

6Citations

37Readers

Abstract

We describe two different attacks against the ISO/IEC 9796-1 signature standard for RSA and Rabin. Both attacks consist in an existential forgery under a chosen-message attack: the attacker asks for the signature of some messages of his choice, and is then able to produce the signature of a message that was never signed by the legitimate signer. The first attack is a variant of Desmedt and Odlyzko's attack and requires a few hundreds of signatures. The second attack is more powerful and requires only three signatures. © 2007 International Association for Cryptologic Research.

Author supplied keywords

Cryptanalysis
Encoding scheme
ISO/IEC 9796-1 signature standard
RSA signatures
Rabin signatures

Cite

CITATION STYLE

APA

Coppersmith, D., Coron, J. S., Grieu, F., Halevi, S., Jutla, C., Naccache, D., & Stern, J. P. (2008). Cryptanalysis of ISO/IEC 9796-1. Journal of Cryptology, 21(1), 27–51. https://doi.org/10.1007/s00145-007-9007-5

Cryptanalysis of ISO/IEC 9796-1

Abstract

Author supplied keywords

Cite

Register to see more suggestions