NTRUSign Countermeasures

NTRUSign is not zero-knowledge

each signature leaks information related to the secret key

(half of IEEE P1363 parameters)

Three countermeasures have been proposed:

ie. the other half of IEEE P1363 parameters