Authors: Qiong Huang, Dennis Y.W. Liu, Duncan S. Wong
Addresses: Department of Computer Science, City University of Hong Kong, Hong Kong, PR China. ' Department of Computer Science, City University of Hong Kong, Hong Kong, PR China. ' Department of Computer Science, City University of Hong Kong, Hong Kong, PR China
Abstract: A signer in a Nominative Signature (NS) scheme can arbitrarily choose a nominee, then jointly generate a signature in such a way that the signature can only be verified with the nominee|s consent. NS is particularly useful in user certification systems. Currently, the only secure NS scheme available requires multiround communications between the nominator and the nominee during signature generation. This implies that an NS-based user certification system requires a certification issuer to interact with a user using a complicated multiround protocol for certificate issuance. It remains an open problem to construct an efficient and non-interactive NS scheme. In this article, we solve this problem by proposing the first efficient one-move (i.e. non-interactive) NS scheme. In addition, we propose an enhanced security requirement called Strong Invisibility, and prove that our scheme satisfies this strong security requirement.
Keywords: digital signatures; nominative signatures; user certification; strong security; cryptography.
International Journal of Applied Cryptography, 2008 Vol.1 No.2, pp.133 - 143
Available online: 03 Nov 2008 *Full-text access for editors Access for subscribers Purchase this article Comment on this article