Lattice Attacks on Digital Signature Schemes
- Cite this article as:
- Howgrave-Graham, N.A. & Smart, N.P. Designs, Codes and Cryptography (2001) 23: 283. doi:10.1023/A:1011214926272
- 239 Views
We describe a lattice attack on the Digital Signature Algorithm (DSA) when used to sign many messages, mi, under the assumption that a proportion of the bits of each of the associated ephemeral keys, yi, can be recovered by alternative techniques.