<p>The multivariate-based unbalanced oil and vinegar signature scheme (UOV) is one of the candidates for post-quantum cryptography (PQC). UOV is a well-established signature scheme owing to its short signature and fast performance, but its public key is much larger than that of other PQC candidates. At ASIACRYPT 2021, Furue et al. proposed quotient ring UOV (QR-UOV) as a new variant of UOV, which reduces the public key size compared to the plain UOV. This QR-UOV has been submitted to the NIST PQC standardization of additional digital signature schemes and has recently been selected as a second-round candidate. In this work, we extend the original ASIACRYPT 2021 paper by providing additional analyses focusing on security and performance aspects of QR-UOV. In particular, we prove that the EUF-CMA security of QR-UOV can be based on the hardness of two underlying problems. From a practical security point of view, we present variants of attacks that exploit the QR structure and analyze their efficiency. Further, we improve the implementation of QR-UOV on various platforms and analyze the performance.</p>

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Post-quantum multivariate signature scheme QR-UOV: Security, parameters, and implementations

  • Hiroki Furue,
  • Yasuhiko Ikematsu,
  • Fumitaka Hoshino,
  • Tsuyoshi Takagi,
  • Haruhisa Kosuge,
  • Kimihiro Yamakoshi,
  • Rika Akiyama,
  • Satoshi Nakamura,
  • Shingo Orihara,
  • Koha Kinjo

摘要

The multivariate-based unbalanced oil and vinegar signature scheme (UOV) is one of the candidates for post-quantum cryptography (PQC). UOV is a well-established signature scheme owing to its short signature and fast performance, but its public key is much larger than that of other PQC candidates. At ASIACRYPT 2021, Furue et al. proposed quotient ring UOV (QR-UOV) as a new variant of UOV, which reduces the public key size compared to the plain UOV. This QR-UOV has been submitted to the NIST PQC standardization of additional digital signature schemes and has recently been selected as a second-round candidate. In this work, we extend the original ASIACRYPT 2021 paper by providing additional analyses focusing on security and performance aspects of QR-UOV. In particular, we prove that the EUF-CMA security of QR-UOV can be based on the hardness of two underlying problems. From a practical security point of view, we present variants of attacks that exploit the QR structure and analyze their efficiency. Further, we improve the implementation of QR-UOV on various platforms and analyze the performance.