Elliptic Curve Digital Signature Algorithm( ECDSA) is used more and more widely in many applications. By analyzing an improved algorithm of ECDSA, the paper points out its security risk, analyzes its root causes for insecurity, and puts forward an attack method. Such an attack method has the opportunity to obtain a signer' s private key with little calculated amount and without the computation of discrete logarithm.%椭圆曲线数字签名算法ECDSA的应用越来越广.本文通过分析其中一种提高ECDSA签名效率的改进算法,指出该算法存在的安全隐患,分析其不安全的根源,并提出一种攻击方法.该攻击方法在不需要解离散对数的情况下,可以得到签名者的私钥,并且计算量不大.
展开▼