2 APPARATUS AND METHOD FOR VERIFYING THE SAFETY OF MULTIVARIATE QUADRATIC EQUATIONS-BASED POST QUANTUM SIGNATURE SCHEMES

摘要

The present invention relates to an apparatus and a method for verifying the safety of a multivariate second-degree polynomial-based post-quantum signature scheme. The apparatus comprises: an S^-1 recovery performing unit to perform recovery of an inverse conversion material S^-1 of a conversion matrix S by first subchannel analysis for a signature value; a T^-1 recovery performing unit to perform recovery of an inverse conversion matrix T^-1 of a conversion matrix T by second subchannel analysis if the recovery of S is successfully performed; and a secret key recovery performing unit to perform recovery of T and a conversion matrix F by an algebraic key recovery attack if the recovery of T is not successfully performed to perform recovery of a secret key consisting of S, T, and F. Therefore, the present invention can verify safety by a secret key recovery attack using only a non-intrusive attack for a multivariate polynomial-based signature scheme.