International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

On the security and the efficiency of the Merkle signature scheme

Authors:
Carlos Coronado
Download:
URL: http://eprint.iacr.org/2005/192
Search ePrint
Search Google
Abstract: This paper builds on the multi-time signature scheme proposed by Merkle. We prove that the original scheme is existentially unforgeable under adaptive chosen message attack. Moreover, we present an improved version which has three advantages: It is provably forward secure. The number of signatures that can be made with one private key is --- in a practical sense --- unlimited. Finally, the cost for key generation is kept low. The theoretical exposition is complemented by experimental data about the efficiency of the improved Merkle signature scheme.
BibTeX
@misc{eprint-2005-12528,
  title={On the security and the efficiency of the Merkle signature scheme},
  booktitle={IACR Eprint archive},
  keywords={public-key cryptography / Merkle Signature Scheme, Forward Security, Provable Security, Lamport-Diffie one-time Signature Scheme.},
  url={http://eprint.iacr.org/2005/192},
  note={ coronado@cdc.informatik.tu-darmstadt.de 12957 received 23 Jun 2005},
  author={Carlos Coronado},
  year=2005
}