Skip to Main content Skip to Navigation
Conference papers

Cryptanalysis of SFLASH with Slightly Modified Parameters

Abstract : SFLASH is a signature scheme which belongs to a family of multivariate schemes proposed by Patarin et al. in 1998. The SFLASH scheme itself has been designed in 2001 and has been selected in 2003 by the NESSIE European Consortium as the best known solution for implementation on low cost smart cards. In this paper, we show that slight modifications of the parameters of SFLASH within the general family initially proposed renders the scheme insecure. The attack uses simple linear algebra, and allows to forge a signature for an arbitrary message in a question of minutes for practical parameters, using only the public key. Although SFLASH itself is not amenable to our attack, it is worrying to observe that no rationale was ever offered for this ?lucky? choice of parameters.
Document type :
Conference papers
Complete list of metadata

Cited literature [10 references]  Display  Hide  Download

https://hal.inria.fr/inria-00556692
Contributor : Pierre-Alain Fouque <>
Submitted on : Monday, January 17, 2011 - 3:39:08 PM
Last modification on : Thursday, July 1, 2021 - 5:58:06 PM
Long-term archiving on: : Tuesday, November 6, 2012 - 11:40:29 AM

File

euro07.pdf
Files produced by the author(s)

Identifiers

Collections

Citation

Vivien Dubois, Pierre-Alain Fouque, Jacques Stern. Cryptanalysis of SFLASH with Slightly Modified Parameters. Advances in Cryptology - EUROCRYPT 2007, 26th Annual International Conference on the Theory and Applications of Cryptographic Techniques, 2007, Barcelona, Spain. pp.264-275, ⟨10.1007/978-3-540-72540-4_15⟩. ⟨inria-00556692⟩

Share

Metrics

Record views

358

Files downloads

311