Accountable Tracing Signatures from Lattices

Ling, San; Nguyen, Khoa; Wang, Huaxiong; Xu, Yanhong

doi:10.1007/978-3-030-12612-4_28

Cited by 7 publications

(6 citation statements)

References 60 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Thus it enables tracer accountability. Ling et al [100] used the lattice hardness problems, and presented a quantum-safe accountable tracing group signature scheme.…”

Section: User Tracing Methods In Group Signaturesmentioning

confidence: 99%

A Survey on Group Signatures and Ring Signatures: Traceability vs. Anonymity

et al. 2022

View full text Add to dashboard Cite

This survey reviews the two most prominent group-oriented anonymous signature schemes and analyzes the existing approaches for their problem: balancing anonymity against traceability. Group signatures and ring signatures are the two leading competitive signature schemes with a rich body of research. Both group and ring signatures enable user anonymity with group settings. Any group user can produce a signature while hiding his identity in a group. Although group signatures have predefined group settings, ring signatures allow users to form ad-hoc groups. Preserving user identities provided an advantage for group and ring signatures. Thus, presently many applications utilize them. However, standard group signatures enable an authority to freely revoke signers’ anonymity. Thus, the authority might weaken the anonymity of innocent users. On the other hand, traditional ring signatures maintain permanent user anonymity, allowing space for malicious user activities; thus achieving the requirements of privacy-preserved traceability in group signatures and controlled anonymity in ring signatures has become desirable. This paper reviews group and ring signatures and explores the existing approaches that address the identification of malicious user activities. We selected many papers that discuss balancing user tracing and anonymity in group and ring signatures. Since this paper scrutinizes both signatures from their basic idea to obstacles including tracing users, it provides readers a broad synthesis of information about two signature schemes with the knowledge of current approaches to balance excessive traceability in group signatures and extreme anonymity in ring signatures. This paper will also shape the future research directions of two critical signature schemes that require more awareness.

show abstract

“…Thus it enables tracer accountability. Ling et al [100] used the lattice hardness problems, and presented a quantum-safe accountable tracing group signature scheme.…”

Section: User Tracing Methods In Group Signaturesmentioning

confidence: 99%

A Survey on Group Signatures and Ring Signatures: Traceability vs. Anonymity

et al. 2022

View full text Add to dashboard Cite

show abstract

“…That is, the admitter issues a token that corresponds to a message, and then the opener extracts the signer's identity from the signature using the token. Another direction is "accountable tracing" [15,12]. In an accountable tracing group signature scheme, users in a group are divided into two kinds.…”

Section: Introductionmentioning

confidence: 99%

Group Signatures with Designated Traceability over Openers’ Attributes

Anada

Fukumitsu

Hasegawa

2022

IJNC

View full text Add to dashboard Cite

We propose a group signature scheme with a function of designated traceability; each opener has attributes, and a signer of a group signature can be traced by only the openers whose attributes satisfy the boolean formula designated by the signer. We describe syntax and security definitions of the scheme. Then we give a generic construction of the scheme by employing a ciphertext-policy attribute-based encryption scheme.

show abstract

“…While many of them [16,32,45,53,37,11,22] aim to provide enhancement on security and efficiency, they are solely designed for the static groups and often fall too short for specific needs of real-life applications. With regard to advanced features, there have been proposed several schemes [33,34,46,48,40,47] and they are still behind their counterparts in the number-theoretic setting. Specifically, [33,34,46,48] deal with dynamic user enrollments and/or revocations of misbehaving users while [40,47] attempt to restrict the power of the tracing manager or keep his actions accountable.…”

Section: Introductionmentioning

confidence: 99%

“…With regard to advanced features, there have been proposed several schemes [33,34,46,48,40,47] and they are still behind their counterparts in the number-theoretic setting. Specifically, [33,34,46,48] deal with dynamic user enrollments and/or revocations of misbehaving users while [40,47] attempt to restrict the power of the tracing manager or keep his actions accountable. For the time being, the problem of making GS secure against the key exposure problem is still open in the context of lattices.…”

Section: Introductionmentioning

confidence: 99%

Forward-Secure Group Signatures from Lattices

Ling

Nguyen

Wang

et al. 2019

Post-Quantum Cryptography

Self Cite

View full text Add to dashboard Cite

Group signature is a fundamental cryptographic primitive, aiming to protect anonymity and ensure accountability of users. It allows group members to anonymously sign messages on behalf of the whole group, while incorporating a tracing mechanism to identify the signer of any suspected signature. Most of the existing group signature schemes, however, do not guarantee security once secret keys are exposed. To reduce potential damages caused by key exposure attacks, Song (ACM-CCS 2001) put forward the concept of forward-secure group signature (FSGS), which prevents attackers from forging group signatures pertaining to past time periods even if a secret group signing key is revealed at the current time period. For the time being, however, all known secure FSGS schemes are based on number-theoretic assumptions, and are vulnerable against quantum computers.In this work, we construct the first lattice-based FSGS scheme. Our scheme is proven secure under the Short Integer Solution and Learning With Errors assumptions. At the heart of our construction is a scalable lattice-based key evolving mechanism, allowing users to periodically update their secret keys and to efficiently prove in zero-knowledge that key evolution process is done correctly. To realize this essential building block, we first employ the Bonsai tree structure by Cash et al. (EURO-CRYPT 2010) to handle the key evolution process, and then develop Langlois et al.'s construction (PKC 2014) to design its supporting zeroknowledge protocol.

show abstract

Accountable Tracing Signatures from Lattices

Cited by 7 publications

References 60 publications

A Survey on Group Signatures and Ring Signatures: Traceability vs. Anonymity

A Survey on Group Signatures and Ring Signatures: Traceability vs. Anonymity

Group Signatures with Designated Traceability over Openers’ Attributes

Forward-Secure Group Signatures from Lattices

Contact Info

Product

Resources

About