MuSig2: simple two-round Schnorr multi-signatures (Q2120074): Difference between revisions

From MaRDI portal
Import240304020342 (talk | contribs)
Set profile property.
ReferenceBot (talk | contribs)
Changed an Item
 
(One intermediate revision by one other user not shown)
Property / full work available at URL
 
Property / full work available at URL: https://doi.org/10.1007/978-3-030-84242-0_8 / rank
 
Normal rank
Property / OpenAlex ID
 
Property / OpenAlex ID: W3096294846 / rank
 
Normal rank
Property / cites work
 
Property / cites work: The one-more-RSA-inversion problems and the security of Chaum's blind signature scheme / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q4409116 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Two-Tier Signatures, Strongly Unforgeable Signatures, and Fiat-Shamir Without Random Oracles / rank
 
Normal rank
Property / cites work
 
Property / cites work: On the (in)security of ROS / rank
 
Normal rank
Property / cites work
 
Property / cites work: Threshold Signatures, Multisignatures and Blind Signatures Based on the Gap-Diffie-Hellman-Group Signature Scheme / rank
 
Normal rank
Property / cites work
 
Property / cites work: Compact multi-signatures for smaller blockchains / rank
 
Normal rank
Property / cites work
 
Property / cites work: The algebraic group model and its applications / rank
 
Normal rank
Property / cites work
 
Property / cites work: Blind Schnorr signatures and signed ElGamal encryption in the algebraic group model / rank
 
Normal rank
Property / cites work
 
Property / cites work: Separating succinct non-interactive arguments from all falsifiable assumptions / rank
 
Normal rank
Property / cites work
 
Property / cites work: Cryptographic Assumptions: A Position Paper / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q4341792 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Weaknesses in Some Threshold Cryptosystems / rank
 
Normal rank
Property / cites work
 
Property / cites work: Efficient discrete logarithm based multi-signature scheme in the plain public key model / rank
 
Normal rank
Property / cites work
 
Property / cites work: Simple Schnorr multi-signatures with applications to bitcoin / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q4536277 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Advances in Cryptology - CRYPTO 2003 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Security arguments for digital signatures and blind signatures / rank
 
Normal rank
Property / cites work
 
Property / cites work: The Power of Proofs-of-Possession: Securing Multiparty Signatures against Rogue-Key Attacks / rank
 
Normal rank
Property / cites work
 
Property / cites work: Efficient signature generation by smart cards / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q4473566 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q3149761 / rank
 
Normal rank
Property / cites work
 
Property / cites work: Q4409125 / rank
 
Normal rank

Latest revision as of 12:08, 28 July 2024

scientific article
Language Label Description Also known as
English
MuSig2: simple two-round Schnorr multi-signatures
scientific article

    Statements

    MuSig2: simple two-round Schnorr multi-signatures (English)
    0 references
    0 references
    0 references
    0 references
    31 March 2022
    0 references
    In [\textit{M. Drijvers} et al., ``On the security of two-round multi-signatures'', in: Proceedings of the 2019 IEEE symposium on security and privacy, SP'19. Los Alamitos, CA: IEEE Computer Society. 1084--1101 (2019; \url{doi:10.1109/SP.2019.00050})] it was shown, that all previously proposed two-round multi-signature schemes which allow a group of signers to produce a joint signature on a joint message using the discrete logarithm problem (Schnorr signature) cannot be proven secure and are vulnerable to attacks with subexponential complexity. In the same paper, a secure two-round scheme was proposed, but by this scheme signatures are produced more than twice larger then Schnorr signatures. Here, a new two-round multi-signature scheme is proposed, which is secure under concurrent signing sessions, supports key aggregation, produces ordinary Schnorr signatures and has similar signer complexity as ordinary Schnorr signatures. A lower bound (in terms of bit length for group elements presentation) for the reduction of complexity is derived to one more discrete logarithm problem. For the entire collection see [Zbl 1483.94004].
    0 references
    multi-signatures
    0 references
    Schnorr signatures
    0 references
    key aggregation
    0 references
    one more discrete logarithm problem
    0 references
    0 references
    0 references
    0 references

    Identifiers