---
res:
  bibo_abstract:
  - 'The strongest standard security notion for digital signature schemes is unforgeability
    under chosen message attacks. In practice, however, this notion can be insufficient
    due to &quot;side-channel attacks&quot; which exploit leakage of information about
    the secret internal state. In this work we put forward the notion of &quot;leakage-resilient
    signatures,&quot; which strengthens the standard security notion by giving the
    adversary the additional power to learn a bounded amount of arbitrary information
    about the secret state that was accessed during every signature generation. This
    notion naturally implies security against all side-channel attacks as long as
    the amount of information leaked on each invocation is bounded and &quot;only
    computation leaks information.&quot; The main result of this paper is a construction
    which gives a (tree-based, stateful) leakage-resilient signature scheme based
    on any 3-time signature scheme. The amount of information that our scheme can
    safely leak per signature generation is 1/3 of the information the underlying
    3-time signature scheme can leak in total. Signature schemes that remain secure
    even if a bounded total amount of information is leaked were recently constructed,
    hence instantiating our construction with these schemes gives the first constructions
    of provably secure leakage-resilient signature schemes. The above construction
    assumes that the signing algorithm can sample truly random bits, and thus an implementation
    would need some special hardware (randomness gates). Simply generating this randomness
    using a leakage-resilient stream-cipher will in general not work. Our second contribution
    is a sound general principle to replace uniform random bits in any leakage-resilient
    construction with pseudorandom ones: run two leakage-resilient stream-ciphers
    (with independent keys) in parallel and then apply a two-source extractor to their
    outputs. @eng'
  bibo_authorlist:
  - foaf_Person:
      foaf_givenName: Sebastian
      foaf_name: Faust, Sebastian
      foaf_surname: Faust
  - foaf_Person:
      foaf_givenName: Eike
      foaf_name: Kiltz, Eike
      foaf_surname: Kiltz
  - foaf_Person:
      foaf_givenName: Krzysztof Z
      foaf_name: Krzysztof Pietrzak
      foaf_surname: Pietrzak
      foaf_workInfoHomepage: http://www.librecat.org/personId=3E04A7AA-F248-11E8-B48F-1D18A9856A87
    orcid: 0000-0002-9139-1654
  - foaf_Person:
      foaf_givenName: Guy
      foaf_name: Rothblum, Guy N
      foaf_surname: Rothblum
  bibo_doi: 10.1007/978-3-642-11799-2_21
  bibo_volume: 5978
  dct_date: 2010^xs_gYear
  dct_publisher: Springer@
  dct_title: Leakage resilient signatures@
...