Beijing Institute of Mathematical Sciences and Applications

Yingjie Zhang , Zijun Zhuang

Zhen Qin

Thursday, July 11, 2024 9:00 AM - 12:00 PM

A3-4-301

Tencent 740 592 843 ()

We analyze the concrete security of a hash-based signature scheme described in a recent series of Internet Drafts by McGrew and Curcio. We show that an original version of their proposal achieves only a “loose” security bound, but that the latest version can be proven to have tighter security in the random-oracle model.