Sciweavers

Free Online Productivity Tools i2Speak i2Symbol i2OCR iTex2Img iWeb2Print iWeb2Shot i2Type iPdf2Split iPdf2Merge i2Bopomofo i2Arabic i2Style i2Image i2PDF iLatex2Rtf Sci2ools

17

PKC
2012
Springer

favoriteEmaildiscussreport

212views Cryptology» more PKC 2012»

Security of Blind Signatures Revisited

11 years 7 months ago

Security of Blind Signatures Revisited

Download eprint.iacr.org

We revisit the deﬁnition of unforgeability of blind signatures as proposed by Pointcheval and Stern (Journal of Cryptology 2000). Surprisingly, we show that this established deﬁnition falls short in two ways of what one would intuitively expect from a secure blind signature scheme: It is not excluded that an adversary submits the same message m twice for signing, and then produces a signature for m = m. The reason is that the forger only succeeds if all messages are distinct. Moreover, it is not excluded that an adversary performs k signing queries and produces signatures on k + 1 messages as long as each of these signatures does not pass

Dominique Schröder, Dominique Unruh

Real-time Traffic

Blind Signature | Blind Signatures | Cryptology | PKC 2012 | Signature Scheme |

claim paper

Related Content

» Fair Blind Signatures without Random Oracles

» Security of Blind Signatures under Aborts

» IDBased Restrictive Partially Blind Signatures

» Two Improved Partially Blind Signature Schemes from Bilinear Pairings

» A Framework for Universally Composable Noncommitting Blind Signatures

» IDbased Weak Blind Signature From Bilinear Pairings

» On the Security of Some Proxy Blind Signature Schemes

» Provably Secure Partially Blind Signatures

» Probable Security Proof of A Blind Signature Scheme over Braid Groups

Post Info
More Details (n/a)

Added	29 Sep 2012
Updated	29 Sep 2012
Type	Journal
Year	2012
Where	PKC
Authors	Dominique Schröder, Dominique Unruh

Comments (0)