Bo Yang,Ying Sun,Yong Yu,Qi Xia

DOI: https://doi.org/10.1109/incos.2012.24

2012-01-01

Abstract:Designated verifier signature (DVS) is a cryptographic primitive, which allows a signer to convince a designated verifier of the validity of a signed statement and prevents the verifier from convincing any third party about the signature. As a variant of DVS, strong DVS (SDVS), which exhibits perfect non-transferability, does not accommodate secure disavow ability (or non-repudiation). It makes a SDVS more like a message authentication code rather than a digital signature. In this situation, the signer has to bear the responsibility of some "forged" signatures produced by the designated verifier. Therefore, it's interesting to construct a strong DVS scheme with secure disavow ability. In this paper, we address this problem with a novel construction of a SDVS scheme with secure disavow ability. The new scheme utilizes a chameleon hash function and supports the signer to have a complete control of his signature. Our scheme achieves unforgeability, non-transferability and secure disavow ability. Comparisons show that the new scheme outperforms the existing one in terms of computational efficiency and signature length.

Li-Hong Guo,Hai-Tao Wu,Qing Yang

DOI: https://doi.org/10.2991/icwcsn-16.2017.32

2016-01-01

Abstract:Proxy signature schemes have been suggested for use in a number of applications, so the security of proxy signature scheme is more and more important. However, at present, almost all the proxy signature schemas were proven secure in the random oracle model, which has received a lot of criticism. Recently, Yu et al. proposed a designated verifier proxy signature scheme without random oracles by using Waters hashing technique. The formal models and a strictly logical process were provided in this schema. But Kang et al. show some attacks on Yu et al.s scheme and offer its insecurity proof. In this paper, in order to overcome the weaknesses in Yu et al.s scheme we make supplements on it and make it secure resist Kang et al.s attacks.

Yang Chen,Yang Zhao,Hu Xiong,Feng Yue

DOI: https://doi.org/10.6633/ijns.201707.19(4).10

2017-01-01

Abstract:The designated verifier signature only enables the designated verifier to check the correctness of the signature, while any third party can not verify whether this signature is valid or not. Most of the previous designated verifier signature schemes depend on certificate-based cryptography or identity-based cryptography, while little attention has been paid to the certificateless designated verifier signature scheme which has much more advantages than the previous constructions. In this paper, we propose the first certificateless strong designated verifier signature scheme with non-delegatability. We show that our scheme satisfies the basic properties of a designated verifier signature scheme and resists the two types of adversaries in certificateless cryptography. In addition, the comparison with other existing certificateless SDVS schemes demonstrates the proposed scheme is provided with a good level of security and performance.

Mingwu Zhang,Tsuyoshi Takagi,Bo Yang,Fagen Li

DOI: https://doi.org/10.1587/transfun.e95.a.259

2012-01-01

Abstract:Strong designated verifier signature scheme (SDVS) allows a verifier to privately check the validity of a signature. Recently, Huang et al. first constructed an identity-based SDVS scheme (HYWS) in a stronger security model with non-interactive proof of knowledge, which holds the security properties of unforgeability, non-transferability, non-delegatability, and privacy of signer's identity. In this paper, we show that their scheme does not provide the claimed properties. Our analysis indicates that HYWS scheme neither resist on the designated verifier signature forgery nor provide simulation indistinguishability, which violates the security properties of unforgeability, non-delegatability and non-transferability.

Jun-Rui Wang,Xing Xie,Yu-Chi Chen

DOI: https://doi.org/10.6688/JISE.20220938(5).0011

2022-01-01

Journal of information science and engineering

Abstract:Designated verifier signature (DVS) is a variant of digital signature which can desig-nate a verifier to verify signatures. The key difference between message authentication code and DVS is that there is no initial and shared key in DVS. In this paper, we propose a new generic construction of DVS from standard cryptographic algorithms. Our DVS construc-tion is very modular and composed of a few fundamentally cryptographic primitives (i.e., message authentication code, public key encryption and collision resistant hash). Based on the DVS construction, we can also obtain a generic construction of threshold designated verifier signature with only slight modification.

Yue Zhang,Xiangjun Xin,Fagen Li

DOI: https://doi.org/10.1142/S0217732320501485

2020-01-01

Modern Physics Letters A

Abstract:A digital signature with designated verifier (SWDV) makes that only the designated verifier can verify its validity. It can be used to protect the privacy and economic interest of the signer. So, the SWDV schemes have many applications in e-voting, auction and some other fields. To make the SWDV secure against the quantum forger, a quantum signature with designated verifier signature (QSWDV) scheme is proposed. Our QSWDV is robust due to its strong security against forgery attack, inter-resending attacks, impersonation attacks and Trojan horse attacks. Its properties such as non-transferability and hiding source can be guaranteed by the signature simulation of the designated verifier. What is more, our scheme can be proved to be information-theoretically secure, which can guarantee the secrecy of the signer's private key and the unforgeability of the QSWDV. In the proposed QSWDV scheme, the partners neither need use quantum one-way function nor need perform quantum state comparisons, which can reduce the complexity and improve the efficiency the QSWDV scheme.

Guilin Wang,Fubiao Xia,Yunlei Zhao

DOI: https://doi.org/10.1007/978-3-642-25516-8_28

2011-01-01

Abstract:After the introduction of designated confirmer signatures (DCS) by Chaum in 1994, considerable researches have been done to build generic schemes from standard digital signatures and construct efficient concrete solutions. In DCS schemes, a signature cannot be verified without the help of either the signer or a semi-trusted third party, called the designated confirmer . If necessary, the confirmer can further convert a DCS into an ordinary signature that is publicly verifiable. However, there is one limit in most existing schemes: the signer is not given the ability to disavow invalid DCS signatures. Motivated by this observation, in this paper we first propose a new variant of DCS model, called designated confirmer signatures with unified verification , in which both the signer and the designated confirmer can run the same protocols to confirm a valid DCS or disavow an invalid signature. Then, we present the first DCS scheme with unified verification and prove its security in the random oracle (RO) model and under a new computational assumption, called Decisional Co-efficient Linear (D-co-L) assumption, whose intractability in pairing settings is analyzed in generic group model. The proposed scheme is constructed by encrypting Boneh, Lynn and Shacham's pairing based short signatures with signed ElGamal encryption. The resulting solution is efficient in both aspects of computation and communication. In addition, we point out that the proposed concept can be generalized by allowing the signer to run different protocols for confirming and disavowing signatures.

Yongjian Liao,Zhiguang Qin

DOI: https://doi.org/10.1109/iccis.2008.4670894

2008-01-01

Abstract:There are only two possible signers in designated verifier signature(DVS) scheme, thus anyone else can not know who is the real signer according to signature/message pairs. Lipmaa et al. discovered delegatability attack on almost all existing designated verifier signature according to original definition of DVS, and later Li et al. subdivided the delegation and defined verifier-only delegatability. Here, we point out the formal definition of verifier-only delegatability is not reasonable and redefine it. Meanwhile we show ZFI DVS scheme is not verifier-only delegatable, but is delegatable, and show ZJ DVS scheme is verifier-only delegatable scheme. We present notion of signer-only delegatability and put forward general construction from verifier-only delegatable DVS scheme to signer-only delegatable DVS scheme, vice verse. We using ZJ DVS scheme as example to show how to construct signer-only delegatable scheme. Finally we classify delegatable DVS scheme into both signer and designated verifier delegatable scheme, verifier-only delegatable scheme and signer-only scheme.

Shifeng Sun,Qiaoyan Wen,Zhengping Jin,Hua Zhang

DOI: https://doi.org/10.1109/isise.2010.47

2010-01-01

Abstract:Recently, several ID-based strong designated verifier signature schemes have been proposed in the literature. However, most of them can not satisfy the strong ness property that any third party without the designated verifier's private key is unable to check the validity of a designated verifier signature, and they are not given the rigorous security proofs. To solve those problems above, we put forward a new efficient ID-based strong designated verifier signature scheme in this paper which is strong, and rigorously proved secure in the random oracle model based on the Bilinear Diffie-Hellmanassumptions.

Xun Sun,Jianhua Li,Hu Yin,Gongliang Chen

DOI: https://doi.org/10.15388/informatica.2010.276

2010-01-01

Informatica

Abstract:In 2007, Kancharla et al. proposed an identity-based strong designated verifier signature (IBSDVS) scheme based on bilinear pairings, and claimed it unforgeable and non-delegatable. However, in this paper, we show that this scheme is actually delegatable.

秦志光,廖永建

DOI: https://doi.org/10.3969/j.issn.1001-0548.2009.05.033

2009-01-01

Abstract:Compared with ordinary digital signature,the designated verifier signature scheme makes it possible for a signer to convince a designated verifier that she has signed a message in such a way that the designated verifier cannot transfer the signature to a third party.In designated verifier signature scheme,no third party can even verify the validity of a designated verifier signature since it must use the designated verifier's secret key in verification.Recently,an ID-based strong designated verifier scheme,ID-based designated verifier proxy signature scheme,and partial cryptanalysis ware proposed.In this paper,we show that the designated verifier signature scheme is delegatable,and the designated verifier proxy signature is forgeable since construction of the proxy scheme is unreasonable.

Xiangjun Xin,Zhuo Wang,Qinglan Yang,Fagen Li

DOI: https://doi.org/10.1007/s10773-019-04377-0

2020-01-01

International Journal of Theoretical Physics

Abstract:Designated verifier signatures are very useful in the applications such as e-voting and auction. In this paper, an identity-based quantum designated verifier signature (IDQDVS) scheme is proposed. It has the security properties such as designated verification, non-transferability and hiding source. And it is secure against forgery attack, inter-resending attack and impersonation attack. What is more, our scheme has the advantages of the classical designated verifier signature schemes. In our scheme, the signer signs a message with his/her private key, while the designated verifier verifies the corresponding IDQDVS with the signer’s classical identity information (such as his/her name or email address), which is used as the signer’s public key. Hence, our scheme can simplify the key management of the quantum signature system. On the other hand, our scheme does not need any entangled state. The verifier need not perform any quantum state comparison during the signature verification phase. Therefore, our scheme is more practicable and efficient than the similar schemes.

Hong-Sheng Huang,Yu-Lei Fu,Han-Yu Lin

2024-03-28

Abstract:In this work, we introduce a strong Designated Verifier Signature (DVS) scheme that incorporates a message recovery mechanism inspired by the concept of the Universal Designated Verifier Signature (UDVS) scheme. It is worth noting that Saeednia's strong designated verifier signature scheme fails to guarantee the privacy of the signature, making it unsuitable for certain applications such as medical record certificates or voting systems. To overcome this limitation, we extend Lee's strong designated verifier signature with a message recovery scheme to develop a universal designated verifier signature scheme. This universal designated verifier scheme is crafted to safeguard the privacy of signature holders, ensuring that only designated verifiers can authenticate the true signer and recover the messages.

Computer Science

Ling Zhang,Jia-Hao Zhang,Xiang-Jun Xin,Min Huang,Chao-Yang Li

DOI: https://doi.org/10.1007/s10773-023-05534-2

2024-01-10

International Journal of Theoretical Physics

Abstract:A quantum designated multi- verifier signature (QDMVS) scheme is proposed. In this scheme, the signer can simultaneously designate multiple verifiers to verify the validity of the signature; the signature's validity can be verified if and only if all the designated verifiers involve in the verification process. Moreover, all the verifiers can work together to generate an indistinguishable signature from the signer, so any third party can not confirm whether the signer or all the verifiers signed the original message. Security analysis shows that our QDMVS scheme is resistant to various attacks. On top of that, our scheme does not need any trusted third party, quantum one- way functions (QOWF), or quantum state swapping tests (SWAP). Therefore, the proposed QDMVS scheme is more efficient than similar schemes.

physics, multidisciplinary

Xiangjun Xin,Zhuo Wang,Qinglan Yang,Fagen Li

DOI: https://doi.org/10.1007/s11128-019-2574-1

IF: 1.965

2020-01-01

Quantum Information Processing

Abstract:Recently, Shi et al. proposed two quantum designated verifier signature (QDVS) schemes. First, we demonstrate the forgery attack and repudiation attack to Shi et al.’s quantum QDVS schemes. Then, a new QDVS scheme based on Bell states is proposed. Our scheme overcomes the security drawbacks of Shi et al.’s scheme. It is secure against forgery attack, repudiation attack, inter-resending attack, impersonation attack and Trojan horse attack. What is more, our scheme has a strong security. It can be proved to be information-theoretically secure. Our scheme also has the properties such as designated verification, non-transferability and hiding source. On the other hand, in our scheme, the partners need not use any quantum one-way function or perform any quantum state comparison algorithm. The qubit efficiency of our scheme can achieve 66.7%. Therefore, our scheme is more secure and efficient than the similar schemes.

Xiangjun Xin,Li Ding,Chaoyang Li,Yongxuan Sang,Qinglan Yang,Fagen Li

DOI: https://doi.org/10.1007/s11128-021-03387-4

IF: 1.965

2021-12-31

Quantum Information Processing

Abstract:Based on the single-qubit rotations, a quantum public-key designated verifier signature (DVS) is proposed. In this scheme, a rotation vector is employed as the signatory’s secret key, and its corresponding quantum sequence is used as the public key. A quantum Diffie–Hellman key can be shared by the signatory and the designated verifier from their quantum public keys. The signatory encrypts the message string into some non-orthogonal particles and performs NOT operations on the quantum Diffie–Hellman key according to the message digest. After these steps, the quantum signature is generated. None but the designed partner can finish verifying of the received quantum signature. The proposed DVS has some other security properties such as source non-traceability and non-transferability. Its unforgeability can be guaranteed by the basic principle of the quantum mechanics. Furthermore, there is not any arbitrator in this DVS scheme. The verifier can finish verifying the signature without the help of any third party. Therefore, it is impossible for the arbitrator to become a bottleneck in the network. Our scheme is the first quantum DVS scheme based on asymmetric quantum public-key system.

physics, multidisciplinary,quantum science & technology, mathematical

Yong Yu,Chunxiang Xu,Xiaosong Zhang,Yongjian Liao

DOI: https://doi.org/10.1016/j.camwa.2009.01.032

IF: 3.218

2009-01-01

Computers & Mathematics with Applications

Abstract:In a designated verifier proxy signature scheme, one can delegate his or her signing capability to another user in such a way that the latter can sign messages on behalf of the former, but the validity of the resulting signatures can only be verified by the designated verifier. Several designated verifier proxy signature schemes have been proposed so far. However, most of the schemes were proven secure in the random oracle model, which has received a lot of criticism since the security proofs in the random oracle model are not sound with respect to the standard model. In this paper, we propose a new construction of designated verifier proxy signature whose security can be proven without using the random oracle model. Our scheme is inspired by Waters’ Identity-based encryption. The unforgeability of our scheme is based on the hardness of Gap Bilinear Diffie–Hellman problem. As far as we know, this is the first designated verifier proxy signature secure in the standard model.

T Cao,D Lin,R Xue

DOI: https://doi.org/10.1049/ip-com:20045270

2005-01-01

IEE Proceedings - Communications

Abstract:Designated-verifier proxy signature (DVPS) is a proxy signature that can only be verified by a designated verifier. DVPS has three variants: weak DVPS, strong DVPS and universal DVPS. In a weak DVPS, the designated verifier can further convert a proxy signature into a public verifiable signature. In a strong DVPS, the designated verifier cannot prove to any third party that the signature is generated by the proxy signer. In a universal DVPS.. any holder of a proxy signature can designate the signature to any designated verifier. Based on Cha and Cheon's identity (ID)-based signatures, an ID-based weak DVPS scheme. an ID-based strong, DVPS scheme and an ID-based universal DVPS scheme are designed. The proposed schemes satisfy all the desired security properties.

DAMIEN VERGNAUD

DOI: https://doi.org/10.1142/s0129054109006474

2009-02-01

International Journal of Foundations of Computer Science

Abstract:The concept of universal designated verifier signatures was introduced by Steinfeld, Bull, Wang and Pieprzyk at Asiacrypt 2003. These signatures can be used as standard publicly verifiable digital signatures but have an additional functionality which allows any holder of a signature to designate the signature to any desired verifier. This designated verifier can check that the message was indeed signed, but is unable to convince anyone else of this fact. We propose new efficient constructions for pairing-based short signatures. Our first scheme is based on Boneh-Boyen signatures and its security can be analyzed in the standard security model. We prove its resistance to forgery assuming the hardness of the so-called strong Diffie-Hellman problem, under the knowledge-of-exponent assumption. The second scheme is compatible with the Boneh-Lynn-Shacham signatures and is proven unforgeable, in the random oracle model, under the assumption that the computational bilinear Diffie-Hellman problem is untractable. Both schemes are designed for devices with constrained computation capabilities since the signing and the designation procedure are pairing-free. Finally, we present extensions of these schemes in the multi-user setting proposed by Desmedt in 2003.

computer science, theory & methods

Yang ZHAO,Feng YUE,Hu XIONG,Zhi-guang QIN

DOI: https://doi.org/10.3969/j.issn.1671-1122.2015.10.002

2015-01-01

Abstract:The designated verifier signature specifies a verifier to check the validity of the signature; any third party can not check it because the designated verifier is able to generate an indistinguishable signature from the signer’s signature. In ring signature scheme, the signer can sign the message on behalf of the ring anonymously, the veriifer can check the validity of the signature, but it cannot recognize which member of the ring has signed it. In order to ensure the signer’s identity privacy and that only the designated veriifer can check the authenticity of the signature, Wu propose a strong designated veriifer ID-based ring signature scheme through combining the designated veriifer signature and the ring signature. The scheme allows the signer to designate a veriifer and generate a designated veriifer ring signature. Through the analysis on Wu’s scheme, we ifgure out the scheme does not satisfy the attribute of non-delegatability in designated verifier signature scheme and describe the attack method in this paper. For the sake of avoiding the lfaw, this paper improves Wu’s scheme and makes it provably secure. In addition, according to the improved scheme, we propose a strong designated veriifer ring signcryption scheme providing authentication and conifdentiality simultaneously.