Lattice attacks on digital signature schemesN. P. Smart, N. Howgrave-Graham, Lattice attacks on digital signature schemes . Designs, Codes and Cryptography, 23 (?). ISSN ?, pp. 283–290. April 2001. No electronic version available. External information
We describe a lattice attack on the Digital Signature Algorithm (DSA) when used to sign many messages, $m_i$, under the assumption that a proportion of the bits of each of the associated ephemeral keys, $y_i$, can be recovered by alternative techniques.