[Resource Topic] 2009/620: Security of ECQV-Certified ECDSA Against Passive Adversaries

Welcome to the resource topic for 2009/620

Title:
Security of ECQV-Certified ECDSA Against Passive Adversaries

Authors: Daniel R. L. Brown, Matthew J. Campagna, Scott A. Vanstone

Abstract:

We show that the elliptic curve Qu-Vanstone implicit certificate scheme (ECQV), when composed with the Elliptic Curve Digital Signature Algorithm (ECDSA), is secure against passive adversaries under the combined assumption of the random oracle model and the generic group model,—if the ECQV certificate itself is excluded from the signable message space, because of an attack of Kravitz. In contrast, we detail an attack on the composition of another implicit certificate scheme, proposed by Pintsov and Vanstone for Optimal Mail Certificates (OMC), and ECDSA. This composition attack forges an implicitly certified ECDSA signature, and is passive in the sense of needing no interaction with the signer or the certification authority. (Pintsov and Vanstone did not propose combining OMC with ECDSA.)

ePrint: https://eprint.iacr.org/2009/620

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .