{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,28]],"date-time":"2026-03-28T07:32:27Z","timestamp":1774683147732,"version":"3.50.1"},"reference-count":66,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["62002385"],"award-info":[{"award-number":["62002385"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["61972413"],"award-info":[{"award-number":["61972413"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans.Inform.Forensic Secur."],"published-print":{"date-parts":[[2023]]},"DOI":"10.1109\/tifs.2023.3304124","type":"journal-article","created":{"date-parts":[[2023,8,10]],"date-time":"2023-08-10T17:35:38Z","timestamp":1691688938000},"page":"5069-5081","source":"Crossref","is-referenced-by-count":9,"title":["Practical Algorithm Substitution Attacks on Real-World Public-Key Cryptosystems"],"prefix":"10.1109","volume":"18","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-6760-5336","authenticated-orcid":false,"given":"Haodong","family":"Jiang","sequence":"first","affiliation":[{"name":"Henan Key Laboratory of Network Cryptography Technology, Zhengzhou, China"}]},{"given":"Jiang","family":"Han","sequence":"additional","affiliation":[{"name":"Institute of Software Chinese Academy of Sciences, Beijing, China"}]},{"given":"Zhenfeng","family":"Zhang","sequence":"additional","affiliation":[{"name":"Institute of Software Chinese Academy of Sciences, Beijing, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8946-3655","authenticated-orcid":false,"given":"Zhi","family":"Ma","sequence":"additional","affiliation":[{"name":"Henan Key Laboratory of Network Cryptography Technology, Zhengzhou, China"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3947-337X","authenticated-orcid":false,"given":"Hong","family":"Wang","sequence":"additional","affiliation":[{"name":"Henan Key Laboratory of Network Cryptography Technology, Zhengzhou, China"}]}],"member":"263","reference":[{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-46800-5_5"},{"key":"ref57","first-page":"55:1","article-title":"Cryptographic reverse firewalls for interactive proof systems","volume":"168","author":"ganesh","year":"2020","journal-title":"Proc 47th Int Colloq Automata Lang Program"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-48116-5_28"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-53887-6_31"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-63697-9_15"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.17487\/RFC8032"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-53890-6_2"},{"key":"ref58","first-page":"535","article-title":"Deterministic and efficiently searchable encryption","volume":"4622","author":"bellare","year":"2007","journal-title":"Advances in Cryptology"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-21568-2_23"},{"key":"ref52","year":"2016","journal-title":"Submission requirements and evaluation criteria for the post-quantum cryptography standardization process"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813681"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-53018-4_13"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-46803-6_21"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-46803-6_22"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3133993"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-72565-9_17"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/CSF.2018.00013"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-76578-5_12"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-185"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.17487\/rfc2104"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2017.2721359"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1145\/3320269.3372199"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2021.3070424"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1145\/3052973.3053031"},{"key":"ref42","author":"tschofenig","year":"2015","journal-title":"Performance Investigations"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-61996-8_30"},{"key":"ref44","article-title":"SSL\/TLS interception proxies and transitive trust","author":"jarmoc","year":"2012"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3136065"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-68697-5_1"},{"key":"ref8","year":"0","journal-title":"Post-Quantum Cryptography Standardization"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1007\/BFb0052241"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813635"},{"key":"ref4","author":"card","year":"2019","journal-title":"IBM Systems Cryptographic Hardware Products"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3133981"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-69053-0_6"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-68697-5_8"},{"key":"ref40","first-page":"1767","article-title":"Big numbers—Big troubles: Systematically analyzing nonce leakage in (EC)DSA implementations","author":"weiser","year":"2020","journal-title":"Proc 29th USENIX Secur Symp"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/TIT.1985.1057074"},{"key":"ref34","year":"2018","journal-title":"Recommendation for Pair-wise Key Establishment Schemes Using Discrete Logarithm Cryptography (Revised)"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-90a"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-24676-3_4"},{"key":"ref31","first-page":"1","article-title":"Subversion-resilient signatures: Definitions, constructions and applications","volume":"2015","author":"ateniese","year":"2015","journal-title":"Cryptology-eprint-archive"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2018.00032"},{"key":"ref33","year":"2019","journal-title":"Recommendation for pair-wise key establishment using integer factorization cryptography"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1145\/2896384"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-44371-2_1"},{"key":"ref1","author":"perlroth","year":"2013","journal-title":"N S A able to foil basic safeguards of privacy on web"},{"key":"ref39","first-page":"319","article-title":"On the practical exploitability of dual EC in TLS implementations","author":"checkoway","year":"2014","journal-title":"Proc 23rd USENIX Secur Symp"},{"key":"ref38","author":"shumow","year":"2007","journal-title":"On the Possibility of A Back Door in the NIST SP800-90 Dual EC PRNG"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-64834-3_4"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-17253-4_8"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.46586\/tosc.v2021.i2.389-422"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-75245-3_23"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-96881-0_9"},{"key":"ref64","doi-asserted-by":"publisher","DOI":"10.1137\/S0097539702403773"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.1007\/s00145-011-9114-1"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1007\/s00779-018-01193-x"},{"key":"ref66","doi-asserted-by":"publisher","DOI":"10.1201\/b17668"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-93638-3_22"},{"key":"ref65","first-page":"112","article-title":"A proposal for an ISO standard for public key encryption","volume":"2001","author":"shoup","year":"2001","journal-title":"IACR Cryptol ePrint Arch"},{"key":"ref28","year":"2006"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1145\/3320269.3384768"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1093\/comjnl\/bxy060"},{"key":"ref60","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-23951-9_9"},{"key":"ref62","doi-asserted-by":"publisher","DOI":"10.1007\/BF00196725"},{"key":"ref61","doi-asserted-by":"publisher","DOI":"10.46586\/tches.v2018.i1.238-268"}],"container-title":["IEEE Transactions on Information Forensics and Security"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10206\/9970396\/10214337.pdf?arnumber=10214337","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,9,11]],"date-time":"2023-09-11T17:59:51Z","timestamp":1694455191000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10214337\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"references-count":66,"URL":"https:\/\/doi.org\/10.1109\/tifs.2023.3304124","relation":{},"ISSN":["1556-6013","1556-6021"],"issn-type":[{"value":"1556-6013","type":"print"},{"value":"1556-6021","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023]]}}}