Designs, Codes and Cryptography

, Volume 23, Issue 3, pp 283-290

First online:

Lattice Attacks on Digital Signature Schemes

  • N. A. Howgrave-GrahamAffiliated withT. J. Watson Research Center, IBM
  • , N. P. SmartAffiliated withDepartment of Computer Science, Bristol University

Rent the article at a discount

Rent now

* Final gross prices may vary according to local VAT.

Get Access


We describe a lattice attack on the Digital Signature Algorithm (DSA) when used to sign many messages, mi, under the assumption that a proportion of the bits of each of the associated ephemeral keys, yi, can be recovered by alternative techniques.

digital signatures lattices