Marios Georgiou, Galois, Inc.
One-shot signatures are a form of classic public-key signatures where the signing key is a quantum state that can sign a single classical message before it collapses. Security of one-shot signatures requires unforgeability even in the seemingly paradoxical scenario where the adversary is allowed to pick the public verification key. In this talk, I will survey the area of one-shot signatures. Starting with a few simplifications of the primitive, we will give the formal definition, two constructions relative to an oracle and several applications including uncloneable signing keys and cryptocurrencies that require only classical communication and no ledger. If time permits, we will also touch the equivalent notions in the encryption setting.
Based on joint work with Ryan Amos, Aggelos Kiayias and Mark Zhandry.Recording of the talk