TY - GEN
T1 - A New Variant of Unbalanced Oil and Vinegar Using Quotient Ring
T2 - 27th International Conference on Theory and Application of Cryptology and Information Security, ASIACRYPT 2021
AU - Furue, Hiroki
AU - Ikematsu, Yasuhiko
AU - Kiyomura, Yutaro
AU - Takagi, Tsuyoshi
N1 - Funding Information:
Acknowledgments. This work was supported by JST CREST Grant JPMJCR14D6 and JPMJCR2113, Japan, and JSPS KAKENHI Grant JP21J20391 and JP19K20266, Japan.
Publisher Copyright:
© 2021, International Association for Cryptologic Research.
PY - 2021
Y1 - 2021
N2 - The unbalanced oil and vinegar signature scheme (UOV) is a multivariate signature scheme that has essentially not been broken for over 20 years. However, it requires the use of a large public key; thus, various methods have been proposed to reduce its size. In this paper, we propose a new variant of UOV with a public key represented by block matrices whose components correspond to an element of a quotient ring. We discuss how it affects the security of our proposed scheme whether or not the quotient ring is a field. Furthermore, we discuss their security against currently known and newly possible attacks and propose parameters for our scheme. We demonstrate that our proposed scheme can achieve a small public key size without significantly increasing the signature size compared with other UOV variants. For example, the public key size of our proposed scheme is 85.8 KB for NIST’s Post-Quantum Cryptography Project (security level 3), whereas that of compressed Rainbow is 252.3 KB, where Rainbow is a variant of UOV and is one of the third-round finalists of the NIST PQC project.
AB - The unbalanced oil and vinegar signature scheme (UOV) is a multivariate signature scheme that has essentially not been broken for over 20 years. However, it requires the use of a large public key; thus, various methods have been proposed to reduce its size. In this paper, we propose a new variant of UOV with a public key represented by block matrices whose components correspond to an element of a quotient ring. We discuss how it affects the security of our proposed scheme whether or not the quotient ring is a field. Furthermore, we discuss their security against currently known and newly possible attacks and propose parameters for our scheme. We demonstrate that our proposed scheme can achieve a small public key size without significantly increasing the signature size compared with other UOV variants. For example, the public key size of our proposed scheme is 85.8 KB for NIST’s Post-Quantum Cryptography Project (security level 3), whereas that of compressed Rainbow is 252.3 KB, where Rainbow is a variant of UOV and is one of the third-round finalists of the NIST PQC project.
UR - http://www.scopus.com/inward/record.url?scp=85121916825&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85121916825&partnerID=8YFLogxK
U2 - 10.1007/978-3-030-92068-5_7
DO - 10.1007/978-3-030-92068-5_7
M3 - Conference contribution
AN - SCOPUS:85121916825
SN - 9783030920678
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 187
EP - 217
BT - Advances in Cryptology – ASIACRYPT 2021 - 27th International Conference on the Theory and Application of Cryptology and Information Security, 2021, Proceedings, Part 4
A2 - Tibouchi, Mehdi
A2 - Wang, Huaxiong
PB - Springer Science and Business Media Deutschland GmbH
Y2 - 6 December 2021 through 10 December 2021
ER -