Unlinkable and Strongly Accountable Sanitizable Signatures from Verifiable Ring Signatures

Bultel, Xavier; Lafourcade, Pascal

doi:10.1007/978-3-030-02641-7_10

Cited by 7 publications

(5 citation statements)

References 32 publications

(49 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We suggest to instantiate our construction with the EQS scheme of Fuchsbauer, Hanser, and Slamanig [20], the PKE scheme obtained by applying the Fujisaki-Okamoto transformation [21] to the ElGamal encryption scheme [? ], and the VRS scheme of Bultel and Lafourcade [9]. The efficiency of such an instantiation is summarized in Table 1 and 2.…”

Section: Our Resultsmentioning

confidence: 99%

“…We define slightly simplified and strengthened security definitions for VRS. We note that the existing construction in [9] satisfies all properties defined below.…”

Section: A2 Properties Of Verifiable Ring Signaturesmentioning

confidence: 92%

“…This variant of accountability is mutually exclusive with transparency. Several existing works [7,17,29,9] proposed schemes that are both transparent and unlinkable. Recently, Krenn et al [28] propose the "strong" versions of unforgeability, (non-interactive public) accountability, and transparency.…”

Section: Related Workmentioning

confidence: 99%

See 2 more Smart Citations

Efficient Invisible and Unlinkable Sanitizable Signatures

Bultel

Lafourcade

Lai

et al. 2019

Public-Key Cryptography – PKC 2019

Self Cite

View full text Add to dashboard Cite

Sanitizable signatures allow designated parties (the sanitizers) to apply arbitrary modifications to some restricted parts of signed messages. A secure scheme should not only be unforgeable, but also protect privacy and hold both the signer and the sanitizer accountable. Two important security properties that are seemingly difficult to achieve simultaneously and efficiently are invisibility and unlinkability. While invisibility ensures that the admissible modifications are hidden from external parties, unlinkability says that sanitized signatures cannot be linked to their sources. Achieving both properties simultaneously is crucial for applications where sensitive personal data is signed with respect to data-dependent admissible modifications. The existence of an efficient construction achieving both properties was recently posed as an open question by Camenisch et al. (PKC'17). In this work, we propose a solution to this problem with a two-step construction. First, we construct (non-accountable) invisible and unlinkable sanitizable signatures from signatures on equivalence classes and other basic primitives. Second, we put forth a generic transformation using verifiable ring signatures to turn any non-accountable sanitizable signature into an accountable one while preserving all other properties. When instantiating in the generic group and random oracle model, the efficiency of our construction is comparable to that of prior constructions, while providing stronger security guarantees.

show abstract

Section: Our Resultsmentioning

confidence: 99%

“…We define slightly simplified and strengthened security definitions for VRS. We note that the existing construction in [9] satisfies all properties defined below.…”

Section: A2 Properties Of Verifiable Ring Signaturesmentioning

confidence: 92%

See 1 more Smart Citation

Efficient Invisible and Unlinkable Sanitizable Signatures

Bultel

Lafourcade

Lai

et al. 2019

Public-Key Cryptography – PKC 2019

Self Cite

View full text Add to dashboard Cite

show abstract

“…Scheme complexity. We use the NIZKPs previously given, the class-equivalence signature presented in Fuchsbauer et al [20], the Fujisaki-Okamoto CCA-transformation [21] on El Gamal [17] as a Public-Key Encryption, and the Ring-Signature presented in Bultel and Lafourcade [10]. Note that this ring-signature is not the most efficient one, however this scheme is verifiable, meaning it makes our scheme accountable according to the generic transformation given in [11].…”

Section: Methodsmentioning

confidence: 99%

“…To the best our knowledge, this scheme is the only one that achieves these two properties together. They also provide a generic way to add accountability on any sanitizable signature scheme, using verifiable ring signatures [10]. Note that these schemes allow the sanitizer modify parts of the message in an unlimited way.…”

Section: Introductionmentioning

confidence: 99%

Unlinkable and Invisible $$\gamma $$-Sanitizable Signatures

Bossuat

Bultel

2021

Applied Cryptography and Network Security

Self Cite

View full text Add to dashboard Cite

Sanitizable signatures (SaS) allow a (single) sanitizer, chosen by the signer, to modify and re-sign a message in a somewhat controlled way, that is, only editing parts (or blocks) of the message that are admissible for modification. This primitive is an efficient tool, with many formally defined security properties, such as unlinkability, transparency, immutability, invisibility, and unforgeability. An SaS scheme that satisfies these properties can be a great asset to the privacy of any field it will be applied to, e.g., anonymizing medical files. In this work, we look at the notion of γ-sanitizable signatures (γSaS): we take the sanitizable signatures one step further by allowing the signer to not only decide which blocks can be modified, but also how many of them at most can be modified within a single sanitization, setting a limit, denoted with γ. We adapt the security properties listed above to γSaS and propose our own scheme, ULISS (Unlinkable Limited Invisible Sanitizable Signature), then show that it verifies these properties. This extension of SaS can not only improve current use cases, but also introduce new ones, e.g., restricting the number of changes in a document within a certain timeframe.

show abstract

Secure Trick-Taking Game Protocols

Bultel

Lafourcade

2019

Financial Cryptography and Data Security

View full text Add to dashboard Cite

Unlinkable and Strongly Accountable Sanitizable Signatures from Verifiable Ring Signatures

Cited by 7 publications

References 32 publications

Efficient Invisible and Unlinkable Sanitizable Signatures

Efficient Invisible and Unlinkable Sanitizable Signatures

Unlinkable and Invisible $$\gamma $$-Sanitizable Signatures

Secure Trick-Taking Game Protocols

Contact Info

Product

Resources

About