1999
DOI: 10.1007/3-540-48910-x_15
|View full text |Cite
|
Sign up to set email alerts
|

Unbalanced Oil and Vinegar Signature Schemes

Abstract: Abstract. In [16], J. Patarin designed a new scheme, called "Oil and Vinegar", for computing asymmetric signatures. It is very simple, can be computed very fast (both in secret and public key) and requires very little RAM in smartcard implementations. The idea consists in hiding quadratic equations in n unknowns called "oil" and v = n unknowns called "vinegar" over a finite field K, with linear secret functions. This original scheme was broken in [10] by A. Kipnis and A. Shamir. In this paper, we study some ve… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1

Citation Types

1
294
0
13

Year Published

2004
2004
2022
2022

Publication Types

Select...
7
2

Relationship

0
9

Authors

Journals

citations
Cited by 379 publications
(308 citation statements)
references
References 10 publications
1
294
0
13
Order By: Relevance
“…As the other MQ signature schemes rely on the same construction, our technique applies to those cryptosystems as well. We do not use any property of Rainbow that is not shared by, e.g., HFEv − [24], pC * [7], or UOV [15]. The exceptions are the MQ signature schemes that do not have the construction of Fig.…”
Section: Our Blind Signature Schemementioning
confidence: 99%
See 1 more Smart Citation
“…As the other MQ signature schemes rely on the same construction, our technique applies to those cryptosystems as well. We do not use any property of Rainbow that is not shared by, e.g., HFEv − [24], pC * [7], or UOV [15]. The exceptions are the MQ signature schemes that do not have the construction of Fig.…”
Section: Our Blind Signature Schemementioning
confidence: 99%
“…Multivariate schemes are in general very fast and require only modest computational resources, which makes them attractive for the use on low cost devices like smart cards and RFID chips [5,6]. However, while there exist many practical multivariate standard signature schemes such as UOV [15], Rainbow [9] and Gui [24], there is a lack of multivariate signature schemes with special properties such as blind, ring, and group signatures. Blind signature schemes allow a user, who is not in charge of the private signing key, to obtain a signature for a message d by interacting with the signer.…”
Section: Introductionmentioning
confidence: 99%
“…Poisoned Equations and QUAD One could imagine the following scenario, which is inspired by Jacques Patarin's system "Oil and Vinegar" [38]. A malicious manufacturer does not generate the system at random, but rather creates a system that is sparse and has vertex connectivity of 20, for some vertex partition with β ≈ 0.6.…”
Section: 2]mentioning
confidence: 99%
“…They try to recover a secret key by solving a system of algebraic equations. Algebraic attacks were first applied to Matsumoto-Imai Public Key Scheme in [19] by Jacques Patarin and a similar attack was also applied in [15]. Algebraic attacks were also applied to block ciphers in [6], where the complexity for attacking AES and Serpent was evaluated.…”
Section: Introductionmentioning
confidence: 99%