Security Analysis of Reusing Vinegar Values in UOV Signature Scheme

Namhun Koo; Kyung-Ah Shim

doi:10.1109/ACCESS.2024.3409778

IEEE Access (Jan 2024)

Security Analysis of Reusing Vinegar Values in UOV Signature Scheme

Namhun Koo,
Kyung-Ah Shim

Affiliations

Namhun Koo: Department of Mathematics, Ewha Womans University, Seoul, South Korea
Kyung-Ah Shim: ORCiD; National Institute for Mathematical Sciences, Daejeon, South Korea

DOI: https://doi.org/10.1109/ACCESS.2024.3409778
Journal volume & issue: Vol. 12
pp. 137412 – 137417

Abstract

Read online

Multivariate quadratic equation-based cryptographic algorithms are one of the promising post-quantum alternatives to current public-key cryptographic algorithms based on the discrete logarithm problem and the integer factorization problem. In this paper, we provide advanced security analysis of UOV, a well-known signature scheme based on the multivariate quadratic equations, when Vinegar values are reused in signing for efficiency. We determine the minimum number of signatures generated by the reused Vinegar values required for UOV secret key recovery. More precisely, it is enough $\left \lceil {{\displaystyle \frac {v}{o}}}\right \rceil +1$ signatures to recover the secret key in polynomial-time. According to our experimental results, we can recover the secret key of UOV from only three signatures generated by the reused Vinegar values in 72 ms, 498 ms and 1,527 ms on a desktop at the 128-bit, 192-bit and 256-bit security levels, respectively.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords