Some people have been referring to the Rabin signature algorithm as either
Rabin-Miller or R-W (I assume meaning Rabin-Williams). Credit where credit is
due: the scheme is entirely due to Michael Rabin according to my understanding.
His name gets tied to the others in other contexts such as
If you were choosing a signature scheme for a new application and you
were not constrained by existing standards or code, what would you choose?
Desirable properties might include:
* small signatures
* fast signature generation
* fast signature verification
* conservative choice of hard
