{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,16]],"date-time":"2025-10-16T14:02:39Z","timestamp":1760623359320,"version":"3.40.3"},"publisher-location":"Cham","reference-count":35,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031627453"},{"type":"electronic","value":"9783031627460"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-3-031-62746-0_13","type":"book-chapter","created":{"date-parts":[[2024,6,10]],"date-time":"2024-06-10T09:02:26Z","timestamp":1718010146000},"page":"301-335","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":8,"title":["Hash Your Keys Before Signing"],"prefix":"10.1007","author":[{"given":"Thomas","family":"Aulbach","sequence":"first","affiliation":[]},{"given":"Samed","family":"D\u00fczl\u00fc","sequence":"additional","affiliation":[]},{"given":"Michael","family":"Meyer","sequence":"additional","affiliation":[]},{"given":"Patrick","family":"Struck","sequence":"additional","affiliation":[]},{"given":"Maximiliane","family":"Weish\u00e4upl","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2024,6,11]]},"reference":[{"key":"13_CR1","unstructured":"Ayer, A.: Duplicate signature key selection attack in let\u2019s encrypt (2015). https:\/\/www.agwa.name\/blog\/post\/duplicate_signature_key_selection_attack_in_lets_encrypt"},{"key":"13_CR2","unstructured":"Baldi, M., et al.: LESS. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR3","unstructured":"Baldi, M., et al.: CROSS. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR4","unstructured":"Banegas, G., et al.: Wave. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR5","doi-asserted-by":"crossref","unstructured":"Bellare, M., Rogaway, P.: Random oracles are practical: a paradigm for designing efficient protocols. In: Denning, D.E., Pyle, R., Ganesan, R., Sandhu, R.S., Ashby, V. (eds.) ACM CCS 1993, pp. 62\u201373. ACM Press (1993)","DOI":"10.1145\/168588.168596"},{"key":"13_CR6","unstructured":"Beullens, W., Campos, F., Celi, S., Hess, B., Kannwischer, M.J.: MAYO. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR7","unstructured":"Beullens, W., et al.: UOV. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"154","DOI":"10.1007\/3-540-49162-7_12","volume-title":"Public Key Cryptography","author":"S Blake-Wilson","year":"1999","unstructured":"Blake-Wilson, S., Menezes, A.: Unknown key-share attacks on the station-to-station (STS) protocol. In: Imai, H., Zheng, Y. (eds.) PKC 1999. LNCS, vol. 1560, pp. 154\u2013170. Springer, Heidelberg (1999). https:\/\/doi.org\/10.1007\/3-540-49162-7_12"},{"key":"13_CR9","unstructured":"Bos, J., et al.: HAWK. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR10","unstructured":"Chavez-Saab, J., et al.: SQIsign. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR11","unstructured":"Cheon, J.H., et al.: HAETAE. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR12","unstructured":"Chou, T., et al.: MEDS. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR13","doi-asserted-by":"crossref","unstructured":"Corte-Real Santos, M., Eriksen, J.K., Meyer, M., Reijnders, K.: Apr\u00e8sSQI: Extra Fast Verification for SQIsign Using Extension-Field Signing. Cryptology ePrint Archive, Paper 2023\/1559 (2023)","DOI":"10.1007\/978-3-031-58716-0_3"},{"key":"13_CR14","doi-asserted-by":"crossref","unstructured":"Cremers, C., D\u00fczl\u00fc, S., Fiedler, R., Fischlin, M., Janson, C.: BUFFing signature schemes beyond unforgeability and the case of post-quantum signatures. In: 2021 IEEE Symposium on Security and Privacy, pp. 1696\u20131714. IEEE Computer Society Press (2021)","DOI":"10.1109\/SP40001.2021.00093"},{"key":"13_CR15","unstructured":"del Pino, R., et al.: Raccoon. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR16","unstructured":"Ding, J., et al.: TUOV. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR17","unstructured":"Don, J., Fehr, S., Huang, Y.-H., Struck, P.: On the (in)security of the BUFF transform. IACR Cryptology ePrint Archive 2023:1634 (2023)"},{"key":"13_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"65","DOI":"10.1007\/978-3-031-22972-5_3","volume-title":"Advances in Cryptology","author":"L Ducas","year":"2022","unstructured":"Ducas, L., Postlethwaite, E.W., Pulles, L.N., van Woerden, W.: Hawk: module LIP makes lattice signatures fast, compact and simple. In: Agrawal, S., Lin, D. (eds.) ASIACRYPT 2022. LNCS, vol. 13794, pp. 65\u201394. Springer, Cham (2022). https:\/\/doi.org\/10.1007\/978-3-031-22972-5_3"},{"key":"13_CR19","unstructured":"Espitau, T., Niot, G., Sun, C., Tibouchi, M.: SQUIRRELS. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR20","unstructured":"Furue, H., et al.: QR-UOV. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR21","doi-asserted-by":"crossref","unstructured":"Goldwasser, S., Micali, S., Rivest, R.: A digital signature scheme secure against adaptive chosen-message attacks. SIAM J. Comput. (1988)","DOI":"10.1137\/0217017"},{"key":"13_CR22","unstructured":"Goubin, L., et al.: PROV. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR23","unstructured":"H\u00fclsing, A., et al.: SPHINCS+. Technical report, National Institute of Standards and Technology (2020)"},{"key":"13_CR24","doi-asserted-by":"crossref","unstructured":"Jackson, D., Cremers, C., Cohn-Gordon, K., Sasse, R.: Seems legit: automated analysis of subtle attacks on protocols that use signatures. In: Cavallaro, L., Kinder, J., Wang, X., Katz, J. (eds.) ACM CCS 2019, pp. 2165\u20132180. ACM Press (2019)","DOI":"10.1145\/3319535.3339813"},{"key":"13_CR25","doi-asserted-by":"crossref","unstructured":"Kim, T.H.-J., Basescu, C., Jia, L., Lee, S.B., Hu, Y.-C., Perrig, A.: Lightweight source authentication and path validation. In: Proceedings of the 2014 ACM Conference on SIGCOMM (2015)","DOI":"10.1145\/2619239.2626323"},{"key":"13_CR26","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"206","DOI":"10.1007\/3-540-48910-X_15","volume-title":"Advances in Cryptology \u2014 EUROCRYPT \u201999","author":"A Kipnis","year":"1999","unstructured":"Kipnis, A., Patarin, J., Goubin, L.: Unbalanced oil and vinegar signature schemes. In: Stern, J. (ed.) EUROCRYPT 1999. LNCS, vol. 1592, pp. 206\u2013222. Springer, Heidelberg (1999). https:\/\/doi.org\/10.1007\/3-540-48910-X_15"},{"key":"13_CR27","unstructured":"Lyubashevsky, V., et al.: CRYSTALS-DILITHIUM. Technical report, National Institute of Standards and Technology (2020)"},{"key":"13_CR28","doi-asserted-by":"publisher","first-page":"261","DOI":"10.1023\/B:DESI.0000036250.18062.3f","volume":"33","author":"A Menezes","year":"2004","unstructured":"Menezes, A., Smart, N.: Security of signature schemes in a multi-user setting. Des. Codes Cryptography 33, 261\u2013274 (2004). https:\/\/doi.org\/10.1023\/B:DESI.0000036250.18062.3f","journal-title":"Des. Codes Cryptography"},{"key":"13_CR29","unstructured":"National Institute of\u00a0Standards and Technology. Call for additional digital signature schemes for the post-quantum cryptography standardization process (2022). https:\/\/csrc.nist.gov\/csrc\/media\/Projects\/pqc-dig-sig\/documents\/call-for-proposals-dig-sig-sept-2022.pdf"},{"key":"13_CR30","unstructured":"Patarin, J.: The oil and vinegar signature scheme (1997)"},{"key":"13_CR31","unstructured":"Patarin, J., et al.: VOX. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR32","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"138","DOI":"10.1007\/11496137_10","volume-title":"Applied Cryptography and Network Security","author":"T Pornin","year":"2005","unstructured":"Pornin, T., Stern, J.P.: Digital signatures do not guarantee exclusive ownership. In: Ioannidis, J., Keromytis, A., Yung, M. (eds.) ACNS 2005. LNCS, vol. 3531, pp. 138\u2013150. Springer, Heidelberg (2005). https:\/\/doi.org\/10.1007\/11496137_10"},{"key":"13_CR33","unstructured":"Prest, T., et al.: FALCON. Technical report, National Institute of Standards and Technology (2020)"},{"key":"13_CR34","unstructured":"Wang, L.-C., et al.: SNOVA. Technical report, National Institute of Standards and Technology (2023)"},{"key":"13_CR35","unstructured":"Yu, Y., et al.: HuFu. Technical report, National Institute of Standards and Technology (2023)"}],"container-title":["Lecture Notes in Computer Science","Post-Quantum Cryptography"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-62746-0_13","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,6,10]],"date-time":"2024-06-10T09:04:24Z","timestamp":1718010264000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-62746-0_13"}},"subtitle":["BUFF Security of the Additional NIST PQC Signatures"],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9783031627453","9783031627460"],"references-count":35,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-62746-0_13","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"11 June 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"PQCrypto","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Post-Quantum Cryptography","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Oxford","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"United Kingdom","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"12 June 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14 June 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"pqcrypto2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.maths.ox.ac.uk\/events\/conferences\/pqcrypto-2024","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}