论文部分内容阅读
The framework of digital signature based on qualified certificates and X.509 architecture is known to have many security risks.Moreover,the fraud prevention mechanism is fragile and does not provide strong guarantees that can be necessary for flow of legal documents.Mediated signatures have been proposed as a mechanism to effectively disable signature cards.In this paper we propose further mechanisms that can be applied on top of mediated RSA,compatible with the standard format,but providing security guarantees even in the case when RSA becomes broken or the keys are compromised.The solution is immune tokleptographic attacks as only deterministic algorithms are used on users side.