Attacking the Diebold Signature Variant -- RSA Signatures with Unverified High-order Padding

arXiv:2403.01048v1 Announce Type: new
Abstract: We examine a natural but improper implementation of RSA signature verification deployed on the widely used Diebold Touch Screen and Optical Scan voting machines. In the implemented scheme, the verifier fails to examine a large number of the high-order bits of signature padding and the public exponent is three. We present an very mathematically simple attack that enables an adversary to forge signatures on arbitrary messages in a negligible amount of time.

arxiv bits cs.cr high implementation large machines natural optical order padding rsa scan screen signature signatures touch screen verification voting voting machines