[Gzz-commits] manuscripts/Sigs article.rst

[Benja Fallenstein]

CVSROOT:        /cvsroot/gzz
Module name:    manuscripts
Changes by:     Benja Fallenstein <address@hidden>      03/05/17 14:23:44

Modified files:
        Sigs           : article.rst 

Log message:
        choosing x possibilities

CVSWeb URLs:
http://savannah.gnu.org/cgi-bin/viewcvs/gzz/manuscripts/Sigs/article.rst.diff?tr1=1.40&tr2=1.41&r1=text&r2=text

Patches:
Index: manuscripts/Sigs/article.rst
diff -u manuscripts/Sigs/article.rst:1.40 manuscripts/Sigs/article.rst:1.41
--- manuscripts/Sigs/article.rst:1.40   Sat May 17 14:21:33 2003
+++ manuscripts/Sigs/article.rst        Sat May 17 14:23:44 2003
@@ -294,6 +294,8 @@
 
     - realistic? How much does this need?
 
+      - Works with `$k=10$`, `$N=16$` for SHA-1.
+
 Random or deterministic, but probabilistic
 ------------------------------------------
 
@@ -307,6 +309,14 @@
     we *can* use it here; random oracle 
 
     - birthday paradox; if collision, someone can forge a signature
+      (relevant if a large number of chosen message attacks)
+
+  - can use random number; if we sign only 2**20 messages total,
+    choosing randomly from 2**60 keys should be enough, since
+    we expect collisions only at about 2**30 messages signed
+
+    - birthday paradox again: must not allow the attacker to have
+      2**30 messages being signed
 
 
 Applicability to Digital Publishing