僵硬
发表于 2025-3-28 16:40:03
Generic Forward-Secure Key Agreement Without Signaturesre less accepted (and require more bandwidth) than candidate post-quantum public key encryption schemes. An additional feature of our proposal is that it helps avoid the bad practice of using long term keys certified for encryption to produce digital signatures. We prove the security of our transformation in the random oracle model.