Loading...
research article
User impersonation in key certification schemes
In this note we exhibit some weakness in two key certification schemes. We show how a legitimate user can impersonate any other user in an ElGamal-based certification scheme, even if hashing is applied first. Furthermore, we show how anybody can impersonate users of the modular square root key certification scheme, if no hashing occurs before the certification. This shows that it is essential for this certification scheme to hash a message before signing it.
Loading...
Name
149722.PDF
Access type
openaccess
Size
1.43 MB
Format
Adobe PDF
Checksum (MD5)
de2f0fba963bdb3929a90f3d9794bc08