基于理想格的可证明安全数字签名方案

发布时间：2019-03-18 12:47

【摘要】：为确保签名算法在量子攻击下的安全性,现有的基于格的签名方案大部分都采用标准格结构下的困难性假设问题,而不是理想格,造成方案效率较低。为此,提出一种新的基于理想格上PLWE问题的数字签名方案。通过归约到PLWE问题,证明攻击者即使获取多个已有的消息和对应的签名,也无法对一个新的消息伪造出合法的签名。分析结果表明,与现有的基于标准格上陷门的数字签名方案相比,该方案的签名长度和公私钥长度均减少了约O(n)。
[Abstract]:In order to ensure the security of signature algorithms under the quantum attack, most of the existing lattice-based signature schemes adopt the difficulty hypothesis under the standard lattice structure, rather than the ideal lattice, which results in the low efficiency of the scheme. Therefore, a new digital signature scheme based on PLWE problem on ideal lattices is proposed. By reducing to the PLWE problem, it is proved that the attacker cannot forge a legal signature for a new message even if he acquires multiple existing messages and corresponding signatures. The analysis results show that the signature length and the public-private key length of the proposed scheme are reduced by about O (n). Compared with the existing digital signature scheme based on the trapdoor on the standard lattice.
【作者单位】：复旦大学软件学院;
【分类号】：TN918.91

【相似文献】