Paper 2004/007

Traceable Signatures

Aggelos Kiayias, Yiannis Tsiounis, and Moti Yung

Abstract

We present, implement and apply a new privacy primitive that we call ``Traceable Signatures.'' To this end we develop the underlying mathematical and protocol tools, present the concepts and the underlying security model, and then realize the scheme and its security proof. Traceable signatures support an extended set of fairness mechanisms (mechanisms for anonymity management and revocation) when compared with the traditional group signature mechanism. We demonstrate that this extended function is needed for proper operation and adequate level of privacy in various settings and applications. For example, the new notion allows (distributed) tracing of all signatures by a single (misbehaving) party without opening signatures and revealing identities of any other user in the system. In contrast, if such tracing is implemented by a state of the art group signature system, such wide opening of all signatures of a single user is a (centralized) operation that requires the opening of {\em all} anonymous signatures and revealing the users associated with them, an act that violates the privacy of all users. Our work includes a novel modeling of security in privacy systems that leads to simulation-based proofs. Security notions in privacy systems are typically more complex than the traditional security of cryptographic systems, thus our modeling methodology may find future applications in other settings. To allow efficient implementation of our scheme we develop a number of basic tools, zero-knowledge proofs, protocols, and primitives that we use extensively throughout. These novel mechanisms work directly over a group of unknown order, contributing to the efficiency and modularity of our design, and may be of independent interest. The interactive version of our signature scheme yields the notion of ``traceable (anonymous) identification.''

Metadata
Available format(s)
PDF PS
Category
Cryptographic protocols
Publication info
Published elsewhere. Unknown where it was published
Keywords
digital signaturesgroup signaturesidentification protocols
Contact author(s)
aggelos @ cse uconn edu
History
2004-01-12: revised
2004-01-09: received
See all versions
Short URL
https://ia.cr/2004/007
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2004/007,
      author = {Aggelos Kiayias and Yiannis Tsiounis and Moti Yung},
      title = {Traceable Signatures},
      howpublished = {Cryptology ePrint Archive, Paper 2004/007},
      year = {2004},
      note = {\url{https://eprint.iacr.org/2004/007}},
      url = {https://eprint.iacr.org/2004/007}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.