A Constant-Size Signature Scheme with a Tighter Reduction from the CDH Assumption

Kajita, Kaisei; Ogawa, Kazuto; Fujisaki, Eiichiro

doi:10.1587/transfun.2019cip0015

Cited by 2 publications

(10 citation statements)

References 26 publications

(39 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We revisit DM14 [18] and apply two ideas to reduce reduction loss of DM14: considering multiple tag collisions and changing the construction of tag sets by applying Kajita et al's reduction technique [27]. Concerning tight security reductions, Kajita et al [27] present a signature scheme with the tightest security reduction among known constant-size signature schemes secure under the computational Diffie-Hellman (CDH) assumption. They first construct a signature scheme, satisfying a security notion denoted as existentially unforgeable against extended random-message attacks (EUF-XRMA).…”

Section: Contributionsmentioning

confidence: 99%

“…Next, to further reduce the reduction loss, we use the reduction technique of Kajita et al [27]. In their technique, by reducing the domain of the tag, the reduction loss can be greatly reduced in exchange for the public key length.…”

Section: Contributionsmentioning

confidence: 99%

“…By constructing the tag from a random message, it is not necessary to send the tag with the signature, which leads to slightly smaller signatures. When applying [27], note that the parameters in the lattice setting are different. In particular, the number of signature queries is polynomial in the discrete logarithm setting, but exponential in the lattice setting.…”

Section: Contributionsmentioning

confidence: 99%

“…We demonstrate the following lemma to prove the security of our signature scheme later in this paper. This lemma is almost the same as Lemma 1 in [27], but its parameters are different from those of [27] to match the lattice setting. The proof of [27] cannot directly apply to this lemma, so we show the proof of this lemma here.…”

Section: Tagsmentioning

confidence: 99%

See 3 more Smart Citations

Short Lattice Signature Scheme with Tighter Reduction under Ring-SIS Assumption

Kajita

Ohtake

Ogawa

et al. 2023

IEICE Trans. Fundamentals

Self Cite

View full text Add to dashboard Cite

We propose a short signature scheme under the ring-SIS assumption in the standard model. Specifically, by revisiting an existing construction [Ducas and Micciancio, CRYPTO 2014], we demonstrate lattice-based signatures with improved reduction loss. As far as we know, there are no ways to use multiple tags in the signature simulation of security proof in the lattice tag-based signatures. We address the tag-collision possibility in the lattice setting, which improves reduction loss. Our scheme generates tags from messages by constructing a scheme under a mild security condition that is existentially unforgeable against random message attack with auxiliary information. Thus our scheme can reduce the signature size since it does not need to send tags with the signatures. Our scheme has short signature sizes of 𝑂 (1) and achieves tighter reduction loss than that of Ducas et al.'s scheme. Our proposed scheme has two variants. Our scheme with one property has tighter reduction and the same verification key size of 𝑂 (log 𝑛) as that of Ducas et al.'s scheme, where 𝑛 is the security parameter. Our scheme with the other property achieves much tighter reduction loss of 𝑂 (𝑄/𝑛) and verification key size of 𝑂 (𝑛), where 𝑄 is the number of signing queries.

show abstract

Section: Contributionsmentioning

confidence: 99%

Section: Contributionsmentioning

confidence: 99%

Section: Contributionsmentioning

confidence: 99%

Section: Tagsmentioning

confidence: 99%

See 2 more Smart Citations

Short Lattice Signature Scheme with Tighter Reduction under Ring-SIS Assumption

Kajita

Ohtake

Ogawa

et al. 2023

IEICE Trans. Fundamentals

Self Cite

View full text Add to dashboard Cite

show abstract

“…Thus, using lRS can solve this problem as double voting (double signing) can be detected easily, and anyone only can vote once in the system. Beside e-voting systems, lRS can also apply in other actual scenarios, such as ad hoc network authentication [4], blockchain-based applications [5,6], and cryptocurrencies (Monero [7]). But in some actual transactions based on ring signature, when a ring signer has committed an offence, such as money laundering, online extortion, and terrorist financing, the authority needs to find out who is the actual signer among the ring members.…”

Section: Introductionmentioning

confidence: 99%

Revocable One-Time Ring Signature from Pairings

Han

Zhang

Huang

et al. 2022

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

Ring signature is an anonymous signature that allows a person to sign a message on behalf of a self-formed group while concealing the identification of the signer. However, due to its anonymity and unlinkability, malicious or irresponsible signers can easily attack the signature without any responsibility in some scenarios. In this paper, we propose a novel revocable one-time ring signature (roRS) scheme from bilinear pairings, which introduces linkability and mandatory revocability into ring signature. In particular, linkability can resist the double-signing attack and mandatory revocability guarantees that a revocation authority can identify the actual signer when a suspicious signer appears in any situation. The computational complexity of pairing computations is constant, and the time of the revocation phase is more efficient than previous schemes. Furthermore, our scheme is provable secure in the random oracle model, using DL, CDH, and DBDH assumptions.

show abstract

A Constant-Size Signature Scheme with a Tighter Reduction from the CDH Assumption

Cited by 2 publications

References 26 publications

Short Lattice Signature Scheme with Tighter Reduction under Ring-SIS Assumption

Short Lattice Signature Scheme with Tighter Reduction under Ring-SIS Assumption

Revocable One-Time Ring Signature from Pairings

Contact Info

Product

Resources

About