Paper 2019/324

A Traceable Ring Signature Scheme based on Coding Theory

Pedro Branco and Paulo Mateus

Abstract

Traceable ring signatures are a variant of ring signatures which allows the identity of a user to be revealed, when it signs two different messages with respect to the same group of users. It has applications in e-voting and in cryptocurrencies, such as the well-known Monero. We propose the first traceable ring signature scheme whose security is based on the hardness of the Syndrome Decoding problem, a problem in coding theory which is conjectured to be unsolvable by both classical and quantum algorithms. To construct the scheme, we use a variant of Stern's protocol and, by applying the Fiat-Shamir transform to it in an ingenious way, we obtain a ring signature that allows traceability. We prove that the resulting protocol has the standard security properties for traceable ring signatures in the random oracle model: tag-linkability, anonymity and exculpability. As far as we know, this is the first proposal for a traceable ring signature scheme in the post-quantum setting.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. Minor revision. PQCrypto 2019
Keywords
digital signatures
Contact author(s)
pmbranco @ math tecnico ulisboa pt
History
2019-03-29: received
Short URL
https://ia.cr/2019/324
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2019/324,
      author = {Pedro Branco and Paulo Mateus},
      title = {A Traceable Ring Signature Scheme based on Coding Theory},
      howpublished = {Cryptology ePrint Archive, Paper 2019/324},
      year = {2019},
      note = {\url{https://eprint.iacr.org/2019/324}},
      url = {https://eprint.iacr.org/2019/324}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.