Collusion-Resistant Domain-Specific Pseudonymous Signatures
At ISC 2012, Bender et al.introduced the notion of domain-specific pseudonymous signatures for ID documents. With this primitive, a user can sign with domain-specific pseudonyms, that cannot be linked across domains but that are linkable in a given domain. However, their security model assumes non-collusion of malicious users, which is a strong assumption. We therefore propose improvements to their construction. Our main contribution is a new pseudonymous signature scheme based on group signatures that is collusion-resistant.
Unable to display preview. Download preview PDF.
- 1.Advanced security mechanisms for machine readable travel documents. part 2 extended access control version 2 (EACv2), password authenticated connection establishment (PACE), and restricted identification (RI). Tech. Rep. TR-03110-2, BSI, version 2.10 (March 2012)Google Scholar
- 2.Bellare, M., Shi, H., Zhang, C.: Foundations of group signatures: The case of dynamic groups. IACR Cryptology ePrint Archive 2004, 77 (2004)Google Scholar
- 5.Bringer, J., Chabanne, H., Patey, A.: Collusion-resistant domain-specific pseudonymous signatures. IACR Cryptology ePrint Archive, http://eprint.iacr.org/2013/182
- 6.Bringer, J., Patey, A.: VLR group signatures - how to achieve both backward unlinkability and efficient revocation checks. In: SECRYPT, pp. 215–220 (2012)Google Scholar
- 8.Chen, L., Li, J.: VLR group signatures with indisputable exculpability and efficient revocation. In: Elmagarmid, A.K., Agrawal, D. (eds.) SocialCom/PASSAT, pp. 727–734. IEEE Computer Society (2010)Google Scholar