On the Security of RSA Screening

14 years 3 months ago

Download www.gemplus.com

Since many applications require the veriﬁcation of large sets of signatures, it is sometimes advantageous to perform a simultaneous veriﬁcation instead of checking each signature individually. The simultaneous processing, called batching, must be provably equivalent to the sequential veriﬁcation of all signatures. In eurocrypt’98, Bellare et al. [1] presented a fast RSA batch veriﬁcation scheme, called screening. Here we successfully attack this algorithm by forcing it to accept a false signature and repair it by implementing an additional test.

Jean-Sébastien Coron, David Naccache

Real-time Traffic

Cryptology | Fast Rsa Batch | PKC 1999 | Simultaneous Processing | Simultaneous Veriﬁcation |

claim paper

Post Info
More Details (n/a)

Added	04 Aug 2010
Updated	04 Aug 2010
Type	Conference
Year	1999
Where	PKC
Authors	Jean-Sébastien Coron, David Naccache

Comments (0)

Sciweavers

On the Security of RSA Screening

Cryptology | Fast Rsa Batch | PKC 1999 | Simultaneous Processing | Simultaneous Veriﬁcation |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers