On the security of the WOTS-PRF signature scheme

Philip Lafrance and Alfred Menezes
Advances in Mathematics of Communications, 12 (2019), 185-193.

Abstract: We identify a flaw in the security proof and a flaw in the concrete security analysis of the WOTS-PRF variant of the Winternitz one-time signature scheme, and discuss the implications to its concrete security.

Journal paper       Eprint