Signatures with Memory | 您所在的位置:网站首页 › random oracle model › Signatures with Memory |
Paper 2023/1734
Signatures with Memory-Tight Security in the Quantum Random Oracle Model
Keita Xagawa, Technology Innovation Institute
Abstract
Memory tightness of reductions in cryptography, in addition to the standard tightness related to advantage and running time, is important when the underlying problem can be solved efficiently with large memory, as discussed in Auerbach, Cash, Fersch, and Kiltz (CRYPTO 2017). Diemert, Geller, Jager, and Lyu (ASIACRYPT 2021) and Ghoshal, Ghosal, Jaeger, and Tessaro (EUROCRYPT 2022) gave memory-tight proofs for the multi-challenge security of digital signatures in the random oracle model. This paper studies the memory-tight reductions for _post-quantum_ signature schemes in the _quantum_ random oracle model. Concretely, we show that signature schemes from lossy identification are multi-challenge secure in the quantum random oracle model via memory-tight reductions. Moreover, we show that the signature schemes from lossy identification achieve more enhanced securities considering _quantum_ signing oracles proposed by Boneh and Zhandry (CRYPTO 2013) and Alagic, Majenz, Russel, and Song (EUROCRYPT 2020). We additionally show that signature schemes from preimage-sampleable functions achieve those securities via memory-tight reductions. Note: 2024-06-07: We correct typos. 2024-02-28: We move some sections in the appendix to the main body and modify the bounds slightly. 2024-01-09: We correct errors in the proofs to remove the requirement on LID and extend the proofs to the divergence HVZK cases. |
CopyRight 2018-2019 实验室设备网 版权所有 |