Publication
Designs, Codes, and Cryptography
Paper
Lattice Attacks on Digital Signature Schemes
Abstract
We describe a lattice attack on the Digital Signature Algorithm (DSA) when used to sign many messages, mi, under the assumption that a proportion of the bits of each of the associated ephemeral keys, yi, can be recovered by alternative techniques.