Igor E. Shparlinski scite author profile

We present a polynomial-time algorithm that provably recovers the signer's secret DSA key when a few consecutive bits of the random nonces k (used at each signature generation) are known for a number of DSA signatures at most linear in log q (q denoting as usual the small prime of DSA), under a reasonable assumption on the hash function used in DSA. For most significant or least significant bits, the number of required bits is about log 1/2 q, but can be decreased to log log q with a running time q O(1/log log q) subexponential in log q, and even further to two in polynomial time if one assumes access to ideal lattice basis reduction, namely an oracle for the lattice closest vector problem for the infinity norm. For arbitrary consecutive bits, the attack requires twice as many bits. All previously known results were only heuristic, including those of Howgrave-Graham and Smart who recently introduced that topic. Our attack is based on a connection with the hidden number problem (HNP) introduced at Crypto '96 by Boneh and Venkatesan in order to study the bit-security of the Diffie-Hellman key exchange. The HNP consists, given a prime number q, of recovering a number α ∈ F q such that for many known random t ∈ F q a certain approximation of tα is known. To handle the DSA case, we extend Boneh and Venkatesan's results on the HNP to the case where t has not necessarily perfectly uniform distribution, and establish uniformity statements on the DSA signatures, using exponential sum techniques. The efficiency of our attack has been validated experimentally, and illustrates once again the fact that one should be very cautious with the pseudo-random generation of the nonce within DSA.

show abstract

On the statistical properties of Diffie-Hellman distributions

Canetti

Friedlander

Konyagin

et al. 2000

Isr. J. Math.

View full text Add to dashboard Cite

Parameters of Integral Circulant Graphs and Periodic Quantum Dynamics

Saxena

Severini

Shparlinski

2007

Int. J. Quantum Inform.

View full text Add to dashboard Cite

The intention of the paper is to move a step towards a classification of network topologies that exhibit periodic quantum dynamics. We show that the evolution of a quantum system, whose hamiltonian is identical to the adjacency matrix of a circulant graph, is periodic if and only if all eigenvalues of the graph are integers (that is, the graph is integral ). Motivated by this observation, we focus on relevant properties of integral circulant graphs. Specifically, we bound the number of vertices of integral circulant graphs in terms of their degree, characterize bipartiteness and give exact bounds for their diameter. Additionally, we prove that circulant graphs with odd order do not allow perfect state transfer.

show abstract

On the divisibility of Fermat quotients

Bourgain¹,

Ford²,

Konyagin³

et al. 2010

Michigan Math. J.

View full text Add to dashboard Cite

show abstract

Sato-Tate, cyclicity, and divisibility statistics on average for elliptic curves of small height

Banks

Shparlinski

2009

Isr. J. Math.

View full text Add to dashboard Cite

We obtain asymptotic formulae for the number of primes p x for which the reduction modulo p of the elliptic curvesatisfies certain "natural" properties, on average over integers a and b such that |a| A and |b| B, where A and B are small relative to x. More precisely, we investigate behavior with respect to the Sato-Tate conjecture, cyclicity, and divisibility of the number of points by a fixed integer m.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.