Advertisement

On NIST's proposed digital signature standard

  • Ronald L. Rivest
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 739)

Abstract

The proposal by NIST/NSA of a digital signature standard has some positive aspects, but is marred by serious flaws. Most notably, it is not sufficiently secure for a standard and seems vulnerable to “trapdoors.”

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. [1]
    T. El-Gamal. A public key cryptosystem and a signature scheme based on discrete logarithms. IEEE Trans. Inform. Theory, 31:469–472, 1985.CrossRefGoogle Scholar
  2. [2]
    National Institute for Standards and Technology. Digital signature standard (DSS). Federal Register, 56(169), August 30 1991.Google Scholar
  3. [3]
    National Institute for Standards and Technology. A proposed federal information processing standard for digital signature standard (DSS). Technical Report FIPS PUB XX, National Institute for Standards and Technology, August 1991. DRAFT.Google Scholar
  4. [4]
    Burton S. Kaliski, Jr. An overview of the pkcs standards. Technical report, RSA Data Security, Inc., June 1991.Google Scholar
  5. [5]
    B. A. LaMacchia and A. M. Odlyzko. Computation of discrete logarithms in prime fields. Designs, Codes, and Cryptography, 1:47–62, 1991.Google Scholar
  6. [6]
    C. P. Schnorr. Efficient identification and signatures for smart cards. In G. Brassard, editor, Proceedings CRYPTO 89, pages 239–252. Springer, 1990. Lecture Notes in Computer Science No. 435.Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 1993

Authors and Affiliations

  • Ronald L. Rivest
    • 1
  1. 1.Laboratory for Computer ScienceMassachusetts Institute of TechnologyCambridge

Personalised recommendations