A Broadband Subliminal Channel in Signatures Without Sharing the Signing Key

Qinghua  Hu; Chunxiang Xu; Wanpeng Li

doi:10.1109/TrustCom60117.2023.00118

A Broadband Subliminal Channel in Signatures Without Sharing the Signing Key

Qinghua Hu, Chunxiang Xu, Wanpeng Li

University of Electronic Science and Technology of China

Research output: Chapter in Book/Report/Conference proceeding › Published conference contribution

Abstract

The utilization of the broadband subliminal channel allows a sender to covertly transmit a message to a receiver through digital signatures. This method requires the sender to relinquish the signing key to the receiver. As a result, the receiver has the ability to employ the signing key to sign any data on behalf of the sender without the sender’s knowledge or consent. Meanwhile, difficulties may arise if the sender is unwilling to disclose the signing key to the receiver. In this paper, we propose a broadband subliminal channel that can be used in digital signature schemes (e.g., DSA, ECDSA, ElGamal, and Schnorr) without disclosing the signing key to the receiver. As it writes the message on a digital signature, we call it WMoS. We first implement WMoS in the Elliptic Curve Digital Signature Algorithm (ECDSA). We then provide the security proof to show that signatures generated in WMoS have the same security level as standard ECDSA signatures. Moreover, we discuss the variants of WMoS in ECDSA and use them to construct applications. Furthermore, we use the implementation of WMoS to generate a signature for an Ethereum transaction to demonstrate its feasibility. We also evaluate the efficiency of WMoS in ECDSA, and the results show that WMoS in ECDSA can generate a signature as efficiently as the standard ECDSA.

Original language	English
Title of host publication	2023 IEEE 22nd International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)
Editors	Jia Hu, Geyong Min, Guojun Wang, Nektarios Georgalas
Publisher	Institute of Electrical and Electronics Engineers (IEEE)
Pages	822-830
Number of pages	9
ISBN (Electronic)	979-8-3503-8199-3
DOIs	https://doi.org/10.1109/TrustCom60117.2023.00118
Publication status	Published - 1 Nov 2023
Event	22nd IEEE International Conference on Trust, Security and Privacy in Computing and Communications : TrustCom-2023 - Duration: 1 Nov 2023 → 3 Nov 2023 Conference number: 22nd https://hpcn.exeter.ac.uk/trustcom2023/

Publication series

Name	International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)
Publisher	IEEE
ISSN (Electronic)	2324-9013

Conference

Conference	22nd IEEE International Conference on Trust, Security and Privacy in Computing and Communications
Period	1/11/23 → 3/11/23
Internet address	https://hpcn.exeter.ac.uk/trustcom2023/

Keywords

subliminal channel
digital signature
ECDSA
Ethereum
blockchain
covert communication

Access to Document

10.1109/TrustCom60117.2023.00118Licence: Unspecified

Cite this

Hu, Q., Xu, C., & Li, W. (2023). A Broadband Subliminal Channel in Signatures Without Sharing the Signing Key. In J. Hu, G. Min, G. Wang, & N. Georgalas (Eds.), 2023 IEEE 22nd International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) (pp. 822-830). (International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)). Institute of Electrical and Electronics Engineers (IEEE). https://doi.org/10.1109/TrustCom60117.2023.00118

A Broadband Subliminal Channel in Signatures Without Sharing the Signing Key. / Hu, Qinghua ; Xu, Chunxiang; Li, Wanpeng.
2023 IEEE 22nd International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom). ed. / Jia Hu; Geyong Min; Guojun Wang; Nektarios Georgalas. Institute of Electrical and Electronics Engineers (IEEE), 2023. p. 822-830 (International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)).

Research output: Chapter in Book/Report/Conference proceeding › Published conference contribution

Hu, Q, Xu, C & Li, W 2023, A Broadband Subliminal Channel in Signatures Without Sharing the Signing Key. in J Hu, G Min, G Wang & N Georgalas (eds), 2023 IEEE 22nd International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom). International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), Institute of Electrical and Electronics Engineers (IEEE), pp. 822-830, 22nd IEEE International Conference on Trust, Security and Privacy in Computing and Communications , 1/11/23. https://doi.org/10.1109/TrustCom60117.2023.00118

Hu Q, Xu C, Li W. A Broadband Subliminal Channel in Signatures Without Sharing the Signing Key. In Hu J, Min G, Wang G, Georgalas N, editors, 2023 IEEE 22nd International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom). Institute of Electrical and Electronics Engineers (IEEE). 2023. p. 822-830. (International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)). Epub 2023 Nov 1. doi: 10.1109/TrustCom60117.2023.00118

Hu, Qinghua ; Xu, Chunxiang ; Li, Wanpeng. / A Broadband Subliminal Channel in Signatures Without Sharing the Signing Key. 2023 IEEE 22nd International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom). editor / Jia Hu ; Geyong Min ; Guojun Wang ; Nektarios Georgalas. Institute of Electrical and Electronics Engineers (IEEE), 2023. pp. 822-830 (International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)).

@inproceedings{a90b6a9f26c14207af712af4240601c3,

title = "A Broadband Subliminal Channel in Signatures Without Sharing the Signing Key",

abstract = "The utilization of the broadband subliminal channel allows a sender to covertly transmit a message to a receiver through digital signatures. This method requires the sender to relinquish the signing key to the receiver. As a result, the receiver has the ability to employ the signing key to sign any data on behalf of the sender without the sender{\textquoteright}s knowledge or consent. Meanwhile, difficulties may arise if the sender is unwilling to disclose the signing key to the receiver. In this paper, we propose a broadband subliminal channel that can be used in digital signature schemes (e.g., DSA, ECDSA, ElGamal, and Schnorr) without disclosing the signing key to the receiver. As it writes the message on a digital signature, we call it WMoS. We first implement WMoS in the Elliptic Curve Digital Signature Algorithm (ECDSA). We then provide the security proof to show that signatures generated in WMoS have the same security level as standard ECDSA signatures. Moreover, we discuss the variants of WMoS in ECDSA and use them to construct applications. Furthermore, we use the implementation of WMoS to generate a signature for an Ethereum transaction to demonstrate its feasibility. We also evaluate the efficiency of WMoS in ECDSA, and the results show that WMoS in ECDSA can generate a signature as efficiently as the standard ECDSA.",

keywords = "subliminal channel, digital signature, ECDSA, Ethereum, blockchain, covert communication",

author = "Qinghua Hu and Chunxiang Xu and Wanpeng Li",

year = "2023",

month = nov,

day = "1",

doi = "10.1109/TrustCom60117.2023.00118",

language = "English",

series = "International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)",

publisher = "Institute of Electrical and Electronics Engineers (IEEE)",

pages = "822--830",

editor = "Jia Hu and Geyong Min and Guojun Wang and Nektarios Georgalas",

booktitle = "2023 IEEE 22nd International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)",

note = "22nd IEEE International Conference on Trust, Security and Privacy in Computing and Communications : TrustCom-2023 ; Conference date: 01-11-2023 Through 03-11-2023",

url = "https://hpcn.exeter.ac.uk/trustcom2023/",

}

TY - GEN

T1 - A Broadband Subliminal Channel in Signatures Without Sharing the Signing Key

AU - Hu, Qinghua

AU - Xu, Chunxiang

AU - Li, Wanpeng

N1 - Conference code: 22nd

PY - 2023/11/1

Y1 - 2023/11/1

N2 - The utilization of the broadband subliminal channel allows a sender to covertly transmit a message to a receiver through digital signatures. This method requires the sender to relinquish the signing key to the receiver. As a result, the receiver has the ability to employ the signing key to sign any data on behalf of the sender without the sender’s knowledge or consent. Meanwhile, difficulties may arise if the sender is unwilling to disclose the signing key to the receiver. In this paper, we propose a broadband subliminal channel that can be used in digital signature schemes (e.g., DSA, ECDSA, ElGamal, and Schnorr) without disclosing the signing key to the receiver. As it writes the message on a digital signature, we call it WMoS. We first implement WMoS in the Elliptic Curve Digital Signature Algorithm (ECDSA). We then provide the security proof to show that signatures generated in WMoS have the same security level as standard ECDSA signatures. Moreover, we discuss the variants of WMoS in ECDSA and use them to construct applications. Furthermore, we use the implementation of WMoS to generate a signature for an Ethereum transaction to demonstrate its feasibility. We also evaluate the efficiency of WMoS in ECDSA, and the results show that WMoS in ECDSA can generate a signature as efficiently as the standard ECDSA.

AB - The utilization of the broadband subliminal channel allows a sender to covertly transmit a message to a receiver through digital signatures. This method requires the sender to relinquish the signing key to the receiver. As a result, the receiver has the ability to employ the signing key to sign any data on behalf of the sender without the sender’s knowledge or consent. Meanwhile, difficulties may arise if the sender is unwilling to disclose the signing key to the receiver. In this paper, we propose a broadband subliminal channel that can be used in digital signature schemes (e.g., DSA, ECDSA, ElGamal, and Schnorr) without disclosing the signing key to the receiver. As it writes the message on a digital signature, we call it WMoS. We first implement WMoS in the Elliptic Curve Digital Signature Algorithm (ECDSA). We then provide the security proof to show that signatures generated in WMoS have the same security level as standard ECDSA signatures. Moreover, we discuss the variants of WMoS in ECDSA and use them to construct applications. Furthermore, we use the implementation of WMoS to generate a signature for an Ethereum transaction to demonstrate its feasibility. We also evaluate the efficiency of WMoS in ECDSA, and the results show that WMoS in ECDSA can generate a signature as efficiently as the standard ECDSA.

KW - subliminal channel

KW - digital signature

KW - ECDSA

KW - Ethereum

KW - blockchain

KW - covert communication

UR - https://hpcn.exeter.ac.uk/trustcom2023/Conference_Programme.pdf

UR - https://hpcn.exeter.ac.uk/trustcom2023/

U2 - 10.1109/TrustCom60117.2023.00118

DO - 10.1109/TrustCom60117.2023.00118

M3 - Published conference contribution

T3 - International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)

SP - 822

EP - 830

BT - 2023 IEEE 22nd International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)

A2 - Hu, Jia

A2 - Min, Geyong

A2 - Wang, Guojun

A2 - Georgalas, Nektarios

PB - Institute of Electrical and Electronics Engineers (IEEE)

T2 - 22nd IEEE International Conference on Trust, Security and Privacy in Computing and Communications

Y2 - 1 November 2023 through 3 November 2023

ER -

A Broadband Subliminal Channel in Signatures Without Sharing the Signing Key

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Embargoed Document

Fingerprint

Cite this