A Modification of ECDSA to Avoid the Rho Method Attack

Amira Zahra; Kiki Ariyanti Sugeng

doi:10.2991/acsr.k.220202.042

A Modification of ECDSA to Avoid the Rho Method Attack

Amira Zahra, Kiki Ariyanti Sugeng

Department of Mathematics

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Elliptic Curve Digital Signature Algorithm (ECDSA) is a digital signature algorithm that utilizes an elliptic curve. ECDSA consists of three steps, which are key generation, signature generation, and verification algorithm. ECDSA is used on Bitcoin transactions to generate the user’s public key, private key, and signature, and also to verify a Bitcoin user’s signature. There are some researches on ECDSA weak randomness which can be exploited by attackers to reveal the user’s private key, and causes thefts of the user’s money. ECDSA weak randomness is generating a random number that is not cryptographically secure. Some modifications of ECDSA to overcome this problem have been done, such as
generating the digital signature by using two private keys. Although those modified algorithms overcome ECDSA weak randomness exploitations, it is not resistant to the Rho method attack which can solve elliptic curve discrete logarithm problem (ECDLP). In case ECDLP can be solved, the user’s private key can be revealed. Therefore, in this paper, we modify an ECDSA algorithm that overcomes the exploitation of ECDSA weak randomness and is also resistant to the Rho method attack by using three private keys.

Original language	English
Title of host publication	Proceedings of the International Conference on Mathematics, Geometry, Statistics, and Computation (IC-MaGeStiC 2021)
Publisher	Atlantis Press International
Pages	228-232
ISBN (Print)	978-94-6239-529-9
DOIs	https://doi.org/10.2991/acsr.k.220202.042
Publication status	Published - 8 Feb 2022
Event	International Conference on Mathematics, Geometry, Statistics, and Computation (IC-MaGeStiC 2021) - Jember, Indonesia Duration: 27 Nov 2021 → 27 Nov 2021

Publication series

Name	Advances in Computer Science Research
Publisher	Atlantis Press International B.V.
ISSN (Print)	2352-538X

Conference

Conference	International Conference on Mathematics, Geometry, Statistics, and Computation (IC-MaGeStiC 2021)
Period	27/11/21 → 27/11/21

Keywords

ECDLP
ECDSA
ECDSA weak randomness
Rho method attack

Access to Document

10.2991/acsr.k.220202.042

https://www.atlantis-press.com/article/125970052

Cite this

@inproceedings{6665190ca2404a1d990501f2de483108,

title = "A Modification of ECDSA to Avoid the Rho Method Attack",

abstract = "Elliptic Curve Digital Signature Algorithm (ECDSA) is a digital signature algorithm that utilizes an elliptic curve. ECDSA consists of three steps, which are key generation, signature generation, and verification algorithm. ECDSA is used on Bitcoin transactions to generate the user{\textquoteright}s public key, private key, and signature, and also to verify a Bitcoin user{\textquoteright}s signature. There are some researches on ECDSA weak randomness which can be exploited by attackers to reveal the user{\textquoteright}s private key, and causes thefts of the user{\textquoteright}s money. ECDSA weak randomness is generating a random number that is not cryptographically secure. Some modifications of ECDSA to overcome this problem have been done, such as generating the digital signature by using two private keys. Although those modified algorithms overcome ECDSA weak randomness exploitations, it is not resistant to the Rho method attack which can solve elliptic curve discrete logarithm problem (ECDLP). In case ECDLP can be solved, the user{\textquoteright}s private key can be revealed. Therefore, in this paper, we modify an ECDSA algorithm that overcomes the exploitation of ECDSA weak randomness and is also resistant to the Rho method attack by using three private keys.",

keywords = "ECDLP, ECDSA, ECDSA weak randomness, Rho method attack",

author = "Amira Zahra and Sugeng, {Kiki Ariyanti}",

note = "This research has supported by PUTI-Universitas Indonesia 2020 Research Grant No. NKB-779/UN2.RST/HKP.05.00/2020; International Conference on Mathematics, Geometry, Statistics, and Computation (IC-MaGeStiC 2021) ; Conference date: 27-11-2021 Through 27-11-2021",

year = "2022",

month = feb,

day = "8",

doi = "10.2991/acsr.k.220202.042",

language = "English",

isbn = "978-94-6239-529-9",

series = "Advances in Computer Science Research",

publisher = "Atlantis Press International",

pages = "228--232",

booktitle = "Proceedings of the International Conference on Mathematics, Geometry, Statistics, and Computation (IC-MaGeStiC 2021)",

address = "France",

}

Zahra, A & Sugeng, KA 2022, A Modification of ECDSA to Avoid the Rho Method Attack. in Proceedings of the International Conference on Mathematics, Geometry, Statistics, and Computation (IC-MaGeStiC 2021). Advances in Computer Science Research, Atlantis Press International, pp. 228-232, International Conference on Mathematics, Geometry, Statistics, and Computation (IC-MaGeStiC 2021), 27/11/21. https://doi.org/10.2991/acsr.k.220202.042

A Modification of ECDSA to Avoid the Rho Method Attack. / Zahra, Amira; Sugeng, Kiki Ariyanti.

Proceedings of the International Conference on Mathematics, Geometry, Statistics, and Computation (IC-MaGeStiC 2021). Atlantis Press International, 2022. p. 228-232 (Advances in Computer Science Research).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A Modification of ECDSA to Avoid the Rho Method Attack

AU - Zahra, Amira

AU - Sugeng, Kiki Ariyanti

N1 - This research has supported by PUTI-Universitas Indonesia 2020 Research Grant No. NKB-779/UN2.RST/HKP.05.00/2020

PY - 2022/2/8

Y1 - 2022/2/8

N2 - Elliptic Curve Digital Signature Algorithm (ECDSA) is a digital signature algorithm that utilizes an elliptic curve. ECDSA consists of three steps, which are key generation, signature generation, and verification algorithm. ECDSA is used on Bitcoin transactions to generate the user’s public key, private key, and signature, and also to verify a Bitcoin user’s signature. There are some researches on ECDSA weak randomness which can be exploited by attackers to reveal the user’s private key, and causes thefts of the user’s money. ECDSA weak randomness is generating a random number that is not cryptographically secure. Some modifications of ECDSA to overcome this problem have been done, such as generating the digital signature by using two private keys. Although those modified algorithms overcome ECDSA weak randomness exploitations, it is not resistant to the Rho method attack which can solve elliptic curve discrete logarithm problem (ECDLP). In case ECDLP can be solved, the user’s private key can be revealed. Therefore, in this paper, we modify an ECDSA algorithm that overcomes the exploitation of ECDSA weak randomness and is also resistant to the Rho method attack by using three private keys.

AB - Elliptic Curve Digital Signature Algorithm (ECDSA) is a digital signature algorithm that utilizes an elliptic curve. ECDSA consists of three steps, which are key generation, signature generation, and verification algorithm. ECDSA is used on Bitcoin transactions to generate the user’s public key, private key, and signature, and also to verify a Bitcoin user’s signature. There are some researches on ECDSA weak randomness which can be exploited by attackers to reveal the user’s private key, and causes thefts of the user’s money. ECDSA weak randomness is generating a random number that is not cryptographically secure. Some modifications of ECDSA to overcome this problem have been done, such as generating the digital signature by using two private keys. Although those modified algorithms overcome ECDSA weak randomness exploitations, it is not resistant to the Rho method attack which can solve elliptic curve discrete logarithm problem (ECDLP). In case ECDLP can be solved, the user’s private key can be revealed. Therefore, in this paper, we modify an ECDSA algorithm that overcomes the exploitation of ECDSA weak randomness and is also resistant to the Rho method attack by using three private keys.

KW - ECDLP

KW - ECDSA

KW - ECDSA weak randomness

KW - Rho method attack

U2 - 10.2991/acsr.k.220202.042

DO - 10.2991/acsr.k.220202.042

M3 - Conference contribution

SN - 978-94-6239-529-9

T3 - Advances in Computer Science Research

SP - 228

EP - 232

BT - Proceedings of the International Conference on Mathematics, Geometry, Statistics, and Computation (IC-MaGeStiC 2021)

PB - Atlantis Press International

T2 - International Conference on Mathematics, Geometry, Statistics, and Computation (IC-MaGeStiC 2021)

Y2 - 27 November 2021 through 27 November 2021

ER -

A Modification of ECDSA to Avoid the Rho Method Attack

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this