International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Paper: Practical Attacks Against the Walnut Digital Signature Scheme

Authors:
Ward Beullens
Simon R. Blackburn
Download:
DOI: 10.1007/978-3-030-03326-2_2
Search ePrint
Search Google
Presentation: Slides
Conference: ASIACRYPT 2018
Abstract: Recently, NIST started the process of standardizing quantum-resistant public-key cryptographic algorithms. WalnutDSA, the subject of this paper, is one of the 20 proposed signature schemes that are being considered for standardization. Walnut relies on a one-way function called E-Multiplication, which has a rich algebraic structure. This paper shows that this structure can be exploited to launch several practical attacks against the Walnut cryptosystem. The attacks work very well in practice; it is possible to forge signatures and compute equivalent secret keys for the 128-bit and 256-bit security parameters submitted to NIST in less than a second and in less than a minute respectively.
BibTeX
@inproceedings{asiacrypt-2018-29137,
  title={Practical Attacks Against the Walnut Digital Signature Scheme},
  booktitle={Advances in Cryptology – ASIACRYPT 2018},
  series={Lecture Notes in Computer Science},
  publisher={Springer},
  volume={11272},
  pages={35-61},
  doi={10.1007/978-3-030-03326-2_2},
  author={Ward Beullens and Simon R. Blackburn},
  year=2018
}