a novel cryptoprocessor architecture for chained merkle signature scheme：一种链式merkle签名加密处理器体系结构.pdfVIP

Microprocessors and Microsystems 35 (2011) 34–47 Contents lists available at ScienceDirect Microprocessors and Microsystems journal homepage: /locate/micpro A novel cryptoprocessor architecture for chained Merkle signature scheme q Abdulhadi Shoufan a,*, Nico Huber a, H. Gregor Molter b a Center for Advanced Security Research Darmstadt (CASED), Mornewegstrasse 32, 64293 Darmstadt, Germany b Integrated Circuits and Systems Lab., Technische Universität Darmstadt, Germany a r t i c l e i n f o a b s t r a c t Article history: One-time signature schemes rely on hash functions and are, therefore, assumed to be resistant to attacks Available online 22 July 2010 by quantum computers. These approaches inherently raise a key management problem, as the key pair can be used only for one message. That means, for one-time signature schemes to work, the sender must Keywords: deliver the verification key together with the message and the signature. Upon reception, the receiver has Chained Merkle signature scheme to verify the authenticity of the verification key before verifying the signature itself. Hash-tree based Cryptography hardware and solutions tackle this problem by basing the authenticity of a large number of verification keys on the implementation authenticity of a root key. This approach, however, causes computation, communication, and storage Cryptoprocessor FPGA