Multi-designated Verifiers Signatures
- 767 Downloads
Designated verifier signatures were introduced in the middle of the 90’s by Jakobsson, Sako and Impagliazzo, and independenty patended by Chaum as private signatures. In this setting, a signature can only be verified by a unique and specific user. At Crypto’03, Desmedt suggested the problem of generalizing the designated verifier signatures. In this case, a signature should be intended to a specific set of different verifiers. In this article, we provide a formal definition of multi-designated verifiers signatures and give a rigorous treatment of the security model for such a scheme. We propose a construction based on ring signatures, which meets our definition, but does not achieve the privacy of signer’s identity property. Finally, we propose a very efficient bi-designated verifiers signature scheme based on bilinear maps, which protects the anonymity of signers.
Keywordsmulti-designated verifiers signatures ring signatures bilinear maps privacy of signer’s identity exact security
Unable to display preview. Download preview PDF.
- 2.Bellare, M., Rogaway, P.: Random Oracles are Practical: a Paradigm for Designing Efficient Protocols. In: Proc. of 1st ACM Conference on Computer and Communications Security, pp. 62–73 (1993)Google Scholar
- 7.Chaum, D.: Private Signature and Proof Systems. US Patent 5,493,614 (1996)Google Scholar
- 8.Desmedt, Y.: Verifier-Designated Signatures, Rump Session, In: Crypto 2003 (2003)Google Scholar
- 11.Jakobsson, M., Sako, K., Impagliazzo, R.: Designated Verifier Proofs and their Applications. In: Maurer, U.M. (ed.) EUROCRYPT 1996. LNCS, vol. 1070, pp. 142–154. Springer, Heidelberg (1996)Google Scholar