Formalizing Group Blind Signatures and Practical Constructions without Random Oracles
Group blind signatures combine anonymity properties of both group signatures and blind signatures and offer privacy for both the message to be signed and the signer. The primitive has been introduced with only informal definitions for its required security properties. In this paper, we offer two main contributions: first, we provide foundations for the primitive and present formal security definitions. In the process, we identify and address some subtle issues which were not considered by previous constructions and (informal) security definitions. Our second main contribution is a generic construction that yields practical schemes with a round-optimal signing protocol and constant-size signatures. Our constructions permit dynamic and concurrent enrollment of new members and satisfy strong security requirements. To the best of our knowledge, our schemes are the first provably secure constructions in the standard model. In addition, we introduce some new building blocks which may be of independent interest.
KeywordsBlind signatures group signatures group blind signatures
Unable to display preview. Download preview PDF.
- 3.Bellare, M., Rogaway, P.: Random oracles are practical: A Paradigm for Designing Efficient Protocols. In: ACM-CCS 1993, pp. 62–73. ACM (1993)Google Scholar
- 8.Chaum, D.: Blind signatures for untraceable payments. In: CRYPTO 1982, pp. 199–203. Plenum Press (1983)Google Scholar
- 12.Fuchsbauer, G.: Commuting Signatures and Verifiable Encryption and an Application to Non-Interactively Delegatable Credentials. In Cryptology ePrint Archive, Report 2010/233 (2010), http://eprint.iacr.org/2010/233.pdf
- 13.Ghadafi, E.: Formalizing group blind signatures and practical constructions without random oracles. In Cryptology ePrint Archive, Report 2011/402 (2011), http://eprint.iacr.org/2011/402.pdf