Tamper-Evident Digital Signature Protecting Certification Authorities Against Malware

Author

Choi, Jong Youl ; Golle, Philippe ; Jakobsson, Markus

Author_Institution

Dept. or Comput. Sci., Indiana Univ., Bloomington, IN

fYear

2006

fDate

Sept. 29 2006-Oct. 1 2006

Firstpage

37

Lastpage

44

Abstract

We introduce the notion of tamper-evidence for digital signature generation in order to defend against attacks aimed at covertly leaking secret information held by corrupted signing nodes. This is achieved by letting observers (which need not be trusted) verify the absence of covert channels by means of techniques we introduce herein. We call our signature schemes tamper-evident since any deviation from the protocol is immediately detectable. We demonstrate our technique for the RSA-PSS (known as RSA´s probabilistic signature scheme) and DSA signature schemes and show how the same technique can be applied to the Schnorr and Feige-Fiat-Shamir (FFS) signature schemes. Our technique does not modify the distribution of the generated signature transcripts, and has only a minimal overhead in terms of computation, communication, and storage

Keywords

computer crime; cryptography; digital signatures; probability; Feige-Fiat-Shamir signature scheme; RSA probabilistic signature scheme; Schnorr signature scheme; certification authority protection; malware; tamper-evident digital signatures; Certification; Computer science; Concatenated codes; Cryptography; Digital signatures; Distributed computing; Informatics; Protection; Protocols; Public key;

fLanguage

English

Publisher

ieee

Conference_Titel

Dependable, Autonomic and Secure Computing, 2nd IEEE International Symposium on

Conference_Location

Indianapolis, IN

Print_ISBN

0-7695-2539-3

Type

conf

DOI

10.1109/DASC.2006.46

Filename

4030864