Time-Coordinated Signatures
Hash-based signatures are typically stateful: they need to keep a state with the number of past signatures to know which values have been already used and cannot be reused. If the memory storing the state fails, the security would degrade. Some implementations solve the problem by using a number of secret values so large that the probability of picking the same at random is negligible, but this solution can make the signatures impractical for some real world applications. This paper proposes a new approach to hash-based signatures: we show that it is possible to derive their state entirely from time, without the need to keep a state with the number of past signatures,
Keyword(s):
2015 ◽
Vol 71
(11)
◽
pp. 1638-1645
◽
2019 ◽
Vol 100
(9)
◽
pp. 1653-1664
2020 ◽
Vol 34
(03)
◽
pp. 2442-2449
Keyword(s):
2012 ◽
Vol 132
(1)
◽
pp. 2-5