Distribution of modular sums and the security of the server aided exponentiation

Phong Q. Nguyen; Igor Shparlinski; Jacques Stern

doi:10.1007/978-3-0348-8295-8_24

Distribution of modular sums and the security of the server aided exponentiation

Phong Q. Nguyen, Igor Shparlinski, Jacques Stern

Department of Computing

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

Abstract

We obtain some uniformity of distribution results for the values of modular sums of the form

Sigma (n)(j=1) a(j)x(j) (mod M) (x(1),... , x(n)) epsilonB

where M greater than or equal to 1 is an integer, a(1),..., a(n) are elements of the residue ring module M, selected unformly at random, and a is an arbitrary set of n-dimensional integer vectors. In some partial cases, for very special sets a, some results of this kind have been known, however our estimates are more precise and more general. Our technique is based on fairly simple properties of exponential sums. We also give cryptographic applications of some of these results. In particular, we consider an extension of a pseudo-random number generator due to V. Boyko, M. Peinado and R. Venkatesan, and establish the security of some discrete logarithm based signature schemes making use of this generator (in both its original and extended forms). One of these schemes, which uses precomputation is well known. The other scheme which uses server aided computation, seems to be new. We show that for a certain choice of parameters one can guarantee an essential speed-up of both of these schemes without compromising the security (compared to the traditional discrete logarithm based signature scheme).

Original language	English
Title of host publication	CRYPTOGRAPHY AND COMPUTATIONAL NUMBER THEORY
Editors	K. Y. Lam, Igor Shparlinski, H. Wang, C. P. Xing
Place of Publication	Basel
Publisher	BIRKHAUSER VERLAG AG
Pages	331-342
Number of pages	12
ISBN (Print)	3-7643-6510-2
DOIs	https://doi.org/10.1007/978-3-0348-8295-8_24
Publication status	Published - 2001
Event	Workshop on Cryptography and Computational Number Theory (CCNT 99) - Singapore, Singapore Duration: 22 Nov 1999 → 26 Nov 1999

Publication series

Name	PROGRESS IN COMPUTER SCIENCE AND APPLIED LOGIC
Publisher	BIRKHAUSER VERLAG AG
Volume	20

Conference

Conference	Workshop on Cryptography and Computational Number Theory (CCNT 99)
Country	Singapore
City	Singapore
Period	22/11/99 → 26/11/99

Keywords

SCHEMES

Access to Document

10.1007/978-3-0348-8295-8_24

Cite this

Nguyen, P. Q., Shparlinski, I., & Stern, J. (2001). Distribution of modular sums and the security of the server aided exponentiation. In K. Y. Lam, I. Shparlinski, H. Wang, & C. P. Xing (Eds.), CRYPTOGRAPHY AND COMPUTATIONAL NUMBER THEORY (pp. 331-342). (PROGRESS IN COMPUTER SCIENCE AND APPLIED LOGIC; Vol. 20). BIRKHAUSER VERLAG AG. https://doi.org/10.1007/978-3-0348-8295-8_24

@inproceedings{7e7d0fca66ed46e89c3cc7fa981c79c3,

title = "Distribution of modular sums and the security of the server aided exponentiation",

abstract = "We obtain some uniformity of distribution results for the values of modular sums of the formSigma (n)(j=1) a(j)x(j) (mod M) (x(1),... , x(n)) epsilonBwhere M greater than or equal to 1 is an integer, a(1),..., a(n) are elements of the residue ring module M, selected unformly at random, and a is an arbitrary set of n-dimensional integer vectors. In some partial cases, for very special sets a, some results of this kind have been known, however our estimates are more precise and more general. Our technique is based on fairly simple properties of exponential sums. We also give cryptographic applications of some of these results. In particular, we consider an extension of a pseudo-random number generator due to V. Boyko, M. Peinado and R. Venkatesan, and establish the security of some discrete logarithm based signature schemes making use of this generator (in both its original and extended forms). One of these schemes, which uses precomputation is well known. The other scheme which uses server aided computation, seems to be new. We show that for a certain choice of parameters one can guarantee an essential speed-up of both of these schemes without compromising the security (compared to the traditional discrete logarithm based signature scheme).",

keywords = "SCHEMES",

author = "Nguyen, {Phong Q.} and Igor Shparlinski and Jacques Stern",

year = "2001",

doi = "10.1007/978-3-0348-8295-8_24",

language = "English",

isbn = "3-7643-6510-2",

series = "PROGRESS IN COMPUTER SCIENCE AND APPLIED LOGIC",

publisher = "BIRKHAUSER VERLAG AG",

pages = "331--342",

editor = "Lam, {K. Y.} and Igor Shparlinski and H. Wang and Xing, {C. P.}",

booktitle = "CRYPTOGRAPHY AND COMPUTATIONAL NUMBER THEORY",

note = "Workshop on Cryptography and Computational Number Theory (CCNT 99) ; Conference date: 22-11-1999 Through 26-11-1999",

}

Nguyen, PQ, Shparlinski, I & Stern, J 2001, Distribution of modular sums and the security of the server aided exponentiation. in KY Lam, I Shparlinski, H Wang & CP Xing (eds), CRYPTOGRAPHY AND COMPUTATIONAL NUMBER THEORY. PROGRESS IN COMPUTER SCIENCE AND APPLIED LOGIC, vol. 20, BIRKHAUSER VERLAG AG, Basel, pp. 331-342, Workshop on Cryptography and Computational Number Theory (CCNT 99), Singapore, Singapore, 22/11/99. https://doi.org/10.1007/978-3-0348-8295-8_24

Distribution of modular sums and the security of the server aided exponentiation. / Nguyen, Phong Q.; Shparlinski, Igor; Stern, Jacques.

CRYPTOGRAPHY AND COMPUTATIONAL NUMBER THEORY. ed. / K. Y. Lam; Igor Shparlinski; H. Wang; C. P. Xing. Basel : BIRKHAUSER VERLAG AG, 2001. p. 331-342 (PROGRESS IN COMPUTER SCIENCE AND APPLIED LOGIC; Vol. 20).

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - Distribution of modular sums and the security of the server aided exponentiation

AU - Nguyen, Phong Q.

AU - Shparlinski, Igor

AU - Stern, Jacques

PY - 2001

Y1 - 2001

N2 - We obtain some uniformity of distribution results for the values of modular sums of the formSigma (n)(j=1) a(j)x(j) (mod M) (x(1),... , x(n)) epsilonBwhere M greater than or equal to 1 is an integer, a(1),..., a(n) are elements of the residue ring module M, selected unformly at random, and a is an arbitrary set of n-dimensional integer vectors. In some partial cases, for very special sets a, some results of this kind have been known, however our estimates are more precise and more general. Our technique is based on fairly simple properties of exponential sums. We also give cryptographic applications of some of these results. In particular, we consider an extension of a pseudo-random number generator due to V. Boyko, M. Peinado and R. Venkatesan, and establish the security of some discrete logarithm based signature schemes making use of this generator (in both its original and extended forms). One of these schemes, which uses precomputation is well known. The other scheme which uses server aided computation, seems to be new. We show that for a certain choice of parameters one can guarantee an essential speed-up of both of these schemes without compromising the security (compared to the traditional discrete logarithm based signature scheme).

AB - We obtain some uniformity of distribution results for the values of modular sums of the formSigma (n)(j=1) a(j)x(j) (mod M) (x(1),... , x(n)) epsilonBwhere M greater than or equal to 1 is an integer, a(1),..., a(n) are elements of the residue ring module M, selected unformly at random, and a is an arbitrary set of n-dimensional integer vectors. In some partial cases, for very special sets a, some results of this kind have been known, however our estimates are more precise and more general. Our technique is based on fairly simple properties of exponential sums. We also give cryptographic applications of some of these results. In particular, we consider an extension of a pseudo-random number generator due to V. Boyko, M. Peinado and R. Venkatesan, and establish the security of some discrete logarithm based signature schemes making use of this generator (in both its original and extended forms). One of these schemes, which uses precomputation is well known. The other scheme which uses server aided computation, seems to be new. We show that for a certain choice of parameters one can guarantee an essential speed-up of both of these schemes without compromising the security (compared to the traditional discrete logarithm based signature scheme).

KW - SCHEMES

U2 - 10.1007/978-3-0348-8295-8_24

DO - 10.1007/978-3-0348-8295-8_24

M3 - Conference proceeding contribution

SN - 3-7643-6510-2

T3 - PROGRESS IN COMPUTER SCIENCE AND APPLIED LOGIC

SP - 331

EP - 342

BT - CRYPTOGRAPHY AND COMPUTATIONAL NUMBER THEORY

A2 - Lam, K. Y.

A2 - Shparlinski, Igor

A2 - Wang, H.

A2 - Xing, C. P.

PB - BIRKHAUSER VERLAG AG

CY - Basel

T2 - Workshop on Cryptography and Computational Number Theory (CCNT 99)

Y2 - 22 November 1999 through 26 November 1999

ER -