Unlinkability of Sanitizable Signatures

10 years 5 months ago
Unlinkability of Sanitizable Signatures
Sanitizable signatures allow a designated party, called the sanitizer, to modify parts of signed data such that the immutable parts can still be verified with respect to the original signer. Ateniese et al. (ESORICS 2005) discuss five security properties for such signature schemes: unforgeability, immutability, privacy, transparency and accountability. These notions have been formalized in a recent work by Brzuska et al. (PKC 2009), discussing also the relationships among the security notions. In addition, they prove a modification of the scheme of Ateniese et al. to be secure according to these notions. Here we discuss that a sixth property of sanitizable signature schemes may be desirable: unlinkability. Basically, this property prevents that one can link sanitized message-signature pairs of the same document, thus allowing to deduce combined information about the original document. We show that this notion implies privacy, the inability to recover the original data of sanitized p...
Christina Brzuska, Marc Fischlin, Anja Lehmann, Do
Added 14 Aug 2010
Updated 14 Aug 2010
Type Conference
Year 2010
Where PKC
Authors Christina Brzuska, Marc Fischlin, Anja Lehmann, Dominique Schröder
Comments (0)