[Resource Topic] 2016/1016: Deterring Certificate Subversion: Efficient Double-Authentication-Preventing Signatures

Welcome to the resource topic for 2016/1016

Title:
Deterring Certificate Subversion: Efficient Double-Authentication-Preventing Signatures

Authors: Mihir Bellare, Bertram Poettering, Douglas Stebila

Abstract:

This paper presents highly efficient designs of double authentication preventing signatures (DAPS). In a DAPS, signing two messages with the same first part and differing second parts reveals the signing key. In the context of PKIs we suggest that CAs who use DAPS to create certificates have a court-convincing argument to deny big-brother requests to create rogue certificates, thus deterring certificate subversion. We give two general methods for obtaining DAPS. Both start from trapdoor identification schemes. We instantiate our transforms to obtain numerous specific DAPS that, in addition to being efficient, are proven with tight security reductions to standard assumptions. We implement our DAPS schemes to show that they are not only several orders of magnitude more efficient than prior DAPS but competitive with in-use signature schemes that lack the double authentication preventing property.

ePrint: https://eprint.iacr.org/2016/1016

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .