We describe two variants of ECDSA one of which is secure, in the random oracle model, against existential forgery but suffers from the notion of duplicate signatures. The second variant is also secure against existential forgery but we argue that it is likely to possess only four natural duplicate signatures. Our variants of ECDSA are analogous to the variants of DSA as proposed by Brickell \it et al. However, we show that the ECDSA variants have better exact security properties.
|Translated title of the contribution||Modifications of ECDSA|
|Title of host publication||Selected Areas in Cryptography - SAC 2002|
|Publisher||Springer Berlin Heidelberg|
|Pages||1 - 12|
|Number of pages||11|
|Publication status||Published - Feb 2003|
Bibliographical noteEditors: K. Nyberg and H. Heys