International Workshop on Public Key Cryptography

PKC 2010: Public Key Cryptography – PKC 2010 pp 480-498

Identity-Based Aggregate and Multi-Signature Schemes Based on RSA

  • Ali Bagherzandi
  • Stanisław Jarecki
Conference paper

DOI: 10.1007/978-3-642-13013-7_28

Volume 6056 of the book series Lecture Notes in Computer Science (LNCS)
Cite this paper as:
Bagherzandi A., Jarecki S. (2010) Identity-Based Aggregate and Multi-Signature Schemes Based on RSA. In: Nguyen P.Q., Pointcheval D. (eds) Public Key Cryptography – PKC 2010. PKC 2010. Lecture Notes in Computer Science, vol 6056. Springer, Berlin, Heidelberg


We propose new identity-based multi-signature (IBMS) and aggregate signature (IBAS) schemes, secure under RSA assumption. Our schemes reduce round complexity of previous RSA-based IBMS scheme of Bellare and Neven [BN07] from three to two rounds. Surprisingly, this improvement comes at virtually no cost, as the computational efficiency and exact security of the new scheme are almost identical to those of [BN07]. The new scheme is enabled by a technical tool of independent interest, a class of zero-knowledge proofs of knowledge of preimages of one-way functions which is straight-line simulatable, enabling concurrency and good exact security, and aggregatable, enabling aggregation of parallel instances of such proofs into short multi/aggregate signatures.

Download to read the full conference paper text

Copyright information

© Springer-Verlag Berlin Heidelberg 2010

Authors and Affiliations

  • Ali Bagherzandi
    • 1
  • Stanisław Jarecki
    • 1
  1. 1.Department of Computer ScienceUniversity of CaliforniaIrvine