U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Presentations 2021
Presentation

Efficient Key Recovery for all HFE Signature Variants

June 7, 2021

Presenters

Albrecht Petzoldt - FAU Erlangen Nuremberg

Description

The HFE cryptosystem is one of the best known multivariate schemes. Especially in the area of digital signatures, the  HFEv- variant offers short signatures and high performance. Recently, an instance of the HFEv- signature scheme called GeMSS was elected as one of the alternative candidates for signature schemes in the third round of the
NIST Post Quantum Crypto (PQC) Standardization Project. In this paper, we propose a new key recovery attack on the HFEv- signature scheme. Our attack shows that both the Minus and the Vinegar modication do not enhance the security of the basic HFE scheme significantly. This shows that it is very difficult to build a secure and efficient signature scheme on the basis of HFE. In particular, we use our attack to show that the proposed parameters of the GeMSS scheme are not as secure as claimed.

Event Details

Location

    
                        

                


                

        
 Related Topics


            

                Security and Privacy:
                    post-quantum cryptography            

    


        

        






    


            Created June 07, 2021, Updated June 10, 2021