Mingxing Hu,Weijiong Zhang,Zhen Liu

DOI: https://doi.org/10.48550/arXiv.2206.12093

2022-06-24

Abstract:Ring signatures enable a user to sign messages on behalf of an arbitrary set of users, called the ring, without revealing exactly which member of that ring actually generated the signature. The signer-anonymity property makes ring signatures have been an active research topic. Recently, Park and Sealfon (CRYPTO 19) presented an important anonymity notion named signer-unclaimability and constructed a lattice-based ring signature scheme with unclaimable anonymity in the standard model, however, it did not consider the unforgeable w.r.t. adversarially-chosen-key attack (the public key ring of a signature may contain keys created by an adversary) and the signature size grows quadratically in the size of ring and message. In this work, we propose a new lattice-based ring signature scheme with unclaimable anonymity in the standard model. In particular, our work improves the security and efficiency of Park and Sealfons work, which is unforgeable w.r.t. adversarially-chosen-key attack, and the ring signature size grows linearly in the ring size.

Cryptography and Security

shengke zeng,qinyi li,zhiguang qin,qing lu

DOI: https://doi.org/10.1002/sec.859

IF: 1.968

2016-01-01

Security and Communication Networks

Abstract:Ring signature scheme protects the privacy while signer is signing. In the ring signature scheme, the signer can randomly choose verification keys of entities and generate a signature on behalf of these entities. The generated signature can be verified by anyone by inputting all these verification keys. Consequently, a ring signature convinces a verifier that one member from these entities produces this signature without revealing which one. This property is good for the signer as his identity is not leaked. However, the signer also can make use of this capacity to generate a malicious signature on behalf of a ring. Because of the unconditional anonymity of ring signature, this signer cannot be traced to be responsible for his malicious signing. Group signature can avoid this problem because the group manager in the group signature can trace the actual signer by using the trapdoor. However, the group is fixed from the beginning and it needs a complicated setup algorithm. Deniable ring signature was introduced by Komano et al., which allows to revoke the anonymity of actual signer without the manager's help if necessary. The actual signer can confirm his signing for anyone through the confirmation protocol. On the other hand, non-signers in the ring can disavow this signing by the disavowal protocol. Therefore, the actual signer can be traced. However, Komano's scheme was proven in random oracles, and the traceability protocols (confirmation and disavowal protocols) are interactive. To improve Komano's construction, this work proposes a new efficient non-interactive deniable ring signature scheme in the standard model. It is a kind of ring signature and therefore, it does not require a setup algorithm, and the ring in the scheme is flexible. Copyright (c) 2013 John Wiley & Sons, Ltd.

Wenqian Shang,Yulong Gao,Xueting Chen

DOI: https://doi.org/10.1109/SNPD61259.2024.10673921

2024-07-05

Abstract:This paper presents a new blockchain scheme using a linkable ring signature algorithm based on lattice cryptography. This scheme counters quantum attacks on blockchain transaction signatures. The signature algorithm ensures correctness, anonymity, and unforgeability using trap generation and rejection sampling. It’s resilient to quantum attacks due to lattice cryptography’s hardness. Compared to other lattice-based algorithms, it offers reduced signature generation and verification time, minimized signature length, lower storage requirements, and better scalability. Implementing this scheme supports blockchain transaction security and privacy, promoting blockchain’s sustainable development and widespread application. This research enhances blockchain security against quantum attacks, paving the way for more secure and efficient blockchain-based apps.

Computer Science

Mingxing Hu,Zhen Liu

2022-01-01

Abstract:Ring signatures enable a user to sign messages on behalf of an arbitrary set of users, called the ring. The anonymity of the scheme guarantees that the signature does not reveal which member of the ring signed the message. The notion of linkable ring signatures (LRS) is an extension of the concept of ring signatures such that there is a public way of determining whether two signatures have been produced by the same signer. Lattice-based LRS is an important and active research line, since lattice-based cryptography has attracted more attention due to its distinctive features especially the quantum resistant. However, all the existing lattice-based LRS relied on random oracle heuristics, i.e., no lattice-based LRS in the standard model has been introduced so far. In this paper, we present a lattice-based LRS scheme based on the wellstudied standard lattice assumptions (SIS and LWE) in the standard model.

TIAN Miao-Miao,HUANG Liu-Sheng,YANG Wei

DOI: https://doi.org/10.3724/sp.j.1016.2012.00712

2012-01-01

Chinese Journal of Computers

Abstract:An efficient and secure ring signature scheme has a number of important applications.In this paper,we present a new lattice-based ring signature scheme and prove its security in the standard model.The proposed scheme is strongly unforgeable against adaptive chosen message attacks under the standard small integer solution(SIS) assumption.Compared with the existing lattice-based ring signature schemes without random oracles,our new scheme enjoys shorter signature length,high efficiency and stronger security.

BaoHong Li,YanZhi Liu,Sai Yang

DOI: https://doi.org/10.1109/icebe.2018.00062

2018-01-01

Abstract:Universal designated verifier signatures can be used to resolve the conflict between authenticity and privacy in some applications. However, all of existing constructions for this primitive are based on hard problems in number theory, and will be ultimately broken in quantum era. To address this issue, we construct the first lattice-based universal designated verifier signatures as a post-quantum candidate for this primitive. Our construction is obtained by directly extending a ring-based variant of the Gentry-Peikert-Vaikuntanathan signature scheme with some additional algorithms, thus the existing key generation and signing implementation can be used without modification. We also show that our construction is provably secure under the Small Integer Solution problem over rings, in the random oracle model.

Gongming Zhao,Miaomiao Tian

DOI: https://doi.org/10.1007/978-3-030-01446-9_16

2018-01-01

Abstract:Ring signature is an attractive cryptographic primitive that has been widely used in many fields because of its anonymity. Traditional ring signatures rely on the public key infrastructure and require lots of digital certificates. To eliminate the digital certificates, Zhang and Kim (Asiacrypt’02) introduced the concept of identity-based ring signatures. So far, however there is few identity-based ring signatures built on lattice-related assumptions and they are not efficient enough for applications. In this paper we present a new identity-based ring signature scheme from lattices. Compared with the existing counterparts, our scheme has the advantages of higher computational efficiency and lower storage overhead. We prove the security of our construction in the random oracle model under the short integer solution assumption.

M. Au,Junbin Liang,Liantao Lan,Qiong Huang,Jianye Huang

DOI: https://doi.org/10.3390/info14030160

2023-03-02

Abstract:A ring signature (RS) scheme enables a group member to sign messages on behalf of its group without revealing the definite signer identify, but this also leads to the abuse of anonymity by malicious signers, which can be prevented by traceable ring signatures (TRS). Up until that point, traceable ring signatures have been secure based on the difficult problem of number-theoretic (discrete logarithms or RSA), but since the advent of quantum computers, traditional traceable ring signatures may no longer be secure. Thus Feng proposed a lattice based TRS, which are resistant to attacks by quantum computers. However, that works did not tackle the certificate management problem. To close this gap, a quantum-resistant certificateless TRS scheme was proposed in the study. To the best of our knowledge, this is the first lattice based certificateless TRS. In detail, a specific TRS scheme was combined with the lattice-based certificateless signature technology to solve the certificate management problem while avoid key escrow problem. Additionally, a better zero-knowledge protocol is used to improve the computational efficiency of the scheme, and by reducing the soundness error of the zero-knowledge protocol, the number of runs of the zero-knowledge protocol is reduced, so that the communication overhead of the scheme is reduced. Under random oracle model, the proposed scheme satisfies tag-linkability, anonymity, exculpability and is secure based on the SIS problem and the DLWE problem. In conclusion, the proposed scheme is more practical and promising in e-voting.

Mathematics,Computer Science

Fengtong Wen,Jianing Kang

DOI: https://doi.org/10.1109/ECNCT63103.2024.10704287

2024-07-19

Abstract:In today's privacy-conscious world, considering the possible problems of duplicate voting and duplicate payments in voting systems, payment systems and other application scenarios, linked ring signature (LRS) is a reliable option to ensure the need for anonymity. At the same time, to ensure that LRS can effectively defend against potential future security threats such as quantum computers, we propose an improved identity-based linkable ring signature scheme named LDLRS. This scheme uses the lattice structure and the short integer solution (SIS) problem on the lattice, and constructs an efficient and secure ring signature scheme by using the techniques of preimage sampling and reject sampling. After that, we provide the security proof of LDLRS to ensure the security of the scheme in theory. Finally, by analyzing the computational cost, we demonstrate the efficiency advantages of LDLRS in signature generation and verification compared with existing schemes.

Mathematics,Computer Science

Yongli Tang,Feifei Xia,Qing Ye,Mengyao Wang,Ruijie Mu,Xiaohang Zhang

DOI: https://doi.org/10.1155/2021/9992414

IF: 1.968

2021-09-16

Security and Communication Networks

Abstract:Although most existing linkable ring signature schemes on lattice can effectively resist quantum attacks, they still have the disadvantages of excessive time and storage overhead. This paper constructs an identity-based linkable ring signature (LRS) scheme over NTRU lattice by employing the technologies of trapdoor generation and rejection sampling. The security of this scheme relies on the small integer solution (SIS) problem on NTRU lattice. We prove that this scheme has unconditional anonymity, unforgeability, and linkability under the random oracle model (ROM). Through the performance analysis, this scheme has a shorter size of public/private keys, and when the number of ring members is small (such as N ≤ 8 ), this scheme has a shorter signature size compared with other existing latest lattice-based LRS schemes. The computational efficiency of signature has also been further improved since it only involves multiplication in the polynomial ring and modular operations of small integers. Finally, we implemented our scheme and other similar schemes, and it is shown that the time for the signature generation and verification of this scheme decreases roughly by 44.951% and 33.503%, respectively.

computer science, information systems,telecommunications

Shangping Wang,Ru zhao

DOI: https://doi.org/10.48550/arXiv.1405.3177

2014-05-13

Abstract:On the basis of the signatures scheme without trapdoors from lattice, which is proposed by Vadim Lyubashevsky in 2012, we present a new ring signature scheme from lattice. The proposed ring signature scheme is an extension of the signatures scheme without trapdoors. We proved that our scheme is strongly unforgeable against adaptive chosen message in the random oracle model, and proved that the security of our scheme can be reduced to the hardness of the small integer solution (SIS) problem by rejection samplings. Compared with the existing lattice-based ring signature schemes, our new scheme is more efficient and with shorter signature length.

Cryptography and Security

Chunhong Jiao,Xinyin Xiang

DOI: https://doi.org/10.3390/e23101364

IF: 2.738

2021-10-19

Entropy

Abstract:Message authentication is crucial because it encourages participants to accept countermeasures and further transmit messages to legitimate users in a network while maintaining the legitimacy of the identity of network members. An unauthorized user cannot transmit false messages to a given network. Although traditional public key cryptography is suitable for message authentication, it is also easy to manage and generate keys, and, with the expansion of an entire network, the system needs a lot of computing power, which creates additional risks to network security. A more effective method, such as ring signature, can realize this function and guarantee more security. In this paper, we propose an anti-quantum ring signature scheme based on lattice, functionality analysis, and performance evaluation to demonstrate that this scheme supports unconditional anonymity and unforgeability. After efficiency analysis, our scheme proved more effective than the existing ring signature schemes in processing signature generation and verification. The proposed scheme was applied to VANETs that support strong security and unconditional anonymity to vehicles.

physics, multidisciplinary

Kunal Dey,Mansi Goyal,Bupendra Singh,Aditi Kar Gangopadhyay

2024-10-25

Abstract:An undeniable signature scheme is type of digital signature where the signer retains control over the signature's verifiability. Therefore with the approval of the signer, only an authenticated verifier can verify the signature. In this work, we develop a module lattice-based post-quantum undeniable signature system. Our method is based on the GPV framework utilizing module lattices, with the security assured by the hardness of the SIS and LWE problems. We have thoroughly proved all the desired securities for the proposed scheme. Finally, we have implemented our protocol for different sets of parameters. The purpose of opting a module variant rather than a ring variant is to provide greater flexibility in selecting parameters.

Cryptography and Security

Fengxia Liu,Zhiyong Zheng,Zixian Gong,Kun Tian,Yi Zhang,Zhe Hu,Jia Li,Qun Xu

DOI: https://doi.org/10.1186/s42400-023-00198-1

2024-04-04

Abstract:Lattice-based digital signature has become one of the widely recognized post-quantum algorithms because of its simple algebraic operation, rich mathematical foundation and worst-case security, and also an important tool for constructing cryptography. This survey explores lattice-based digital signatures, a promising post-quantum resistant alternative to traditional schemes relying on factoring or discrete logarithm problems, which face increasing risks from quantum computing. The study covers conventional paradigms like Hash-and-Sign and Fiat-Shamir, as well as specialized applications including group, ring, blind, and proxy signatures. It analyzes the versatility and security strengths of lattice-based schemes, providing practical insights. Each chapter summarizes advancements in schemes, identifying emerging trends. We also pinpoint future directions to deploy lattice-based digital signatures including quantum cryptography.

Xing-Jia Wei,Dian-Jun Lu,Shuang-Shuang Luo,Zhi-Hui Li

DOI: https://doi.org/10.1142/s0217732323501754

2024-01-13

Modern Physics Letters A

Abstract:Modern Physics Letters A, Ahead of Print. Quantum signature has become a hot topic in the current research of digital signature schemes due to its unconditional security. As a special kind of digital signature, ring signatures are frequently employed in practical situations because of their superior anonymity. In this work, we propose a quantum ring signature scheme based on secret sharing that does not use entanglement states. To guarantee the complete security of the participants' secret keys, the idea of secret sharing is incorporated into the quantum key distribution process during the key distribution stage. Each ring member contributes his private key share to the final verification formula through a recursive relationship throughout the signing and verification phases, and the verifier can utilize his private key share along with the user's public key to confirm the ring members' authenticity; The [math]-AS2U hash function is used to encrypt the ring signer's identity during the entire signature process, which assures the signer's identity's complete anonymity, effectively protects the signer's privacy, and is more in line with practical requirements.

astronomy & astrophysics,physics, particles & fields, nuclear, mathematical

Yan Ren,Haipeng Guan,Qiuxia Zhao

DOI: https://doi.org/10.1007/s12652-021-03092-1

IF: 3.662

2021-03-16

Journal of Ambient Intelligence and Humanized Computing

Abstract:In this paper, we propose a novel lattice-based linkable ring signature scheme based on the Borromean ring signature. In our scheme, to avoid the extra overhead caused by reject sampling that used in the existing schemes, we use an exact indistinguishable distribution to replace it. Using our method, signature will be successfully generated without repeating, so the size of the signature can be reduced. Furthermore, our scheme can be extended to multiple layers easily. We also propose a lattice-based multilayer linkable ring signature scheme which can be use for transactions with multiple inputs. Then, we prove that our scheme has unforgeability, anonymity, linkability and non-slanderability that a linkable ring signature scheme should have. Efficiency analysis shows that our scheme has a smaller signature size under the same security conditions.

computer science, information systems,telecommunications, artificial intelligence

Wenling Liu,Zhen Liu,Khoa Nguyen,Guomin Yang,Yu

DOI: https://doi.org/10.1007/978-3-030-59013-0_18

2020-01-01

Abstract:As a widely used privacy-preserving technique for cryptocurrencies, Stealth Address constitutes a key component of Ring Confidential Transaction (RingCT) protocol and it was adopted by Monero, one of the most popular privacy-centric cryptocurrencies. Recently, Liu et al. [EuroS&P 2019] pointed out a flaw in the current widely used stealth address algorithm that once a derived secret key is compromised, the damage will spread to the corresponding master secret key, and all the derived secret keys thereof. To address this issue, Liu et al. introduced Key-Insulated and Privacy-Preserving Signature Scheme with Publicly Derived Public Key (PDPKS scheme), which captures the functionality, security, and privacy requirements of stealth address in cryptocurrencies. They further proposed a paring-based PDPKS construction and thus provided a provably secure stealth address algorithm. However, while other privacy-preserving cryptographic tools for RingCT, such as ring signature, commitment, and range proof, have successfully found counterparts on lattices, the development of lattice-based stealth address scheme lags behind and hinders the development of quantum-resistant privacy-centric cryptocurrencies following the RingCT approach. In this paper, we propose the first lattice-based PDPKS scheme and prove its security in the random oracle model. The scheme provides (potentially) quantum security not only for the stealth address algorithm but also for the deterministic wallet. Prior to this, the existing deterministic wallet algorithms, which have been widely adopted by most Bitcoin-like cryptocurrencies due to its easy backup/recovery and trustless audits, are not quantum resistant.

Zhen Liu,Khoa Nguyen,Guomin Yang,Huaxiong Wang,Duncan S. Wong

DOI: https://doi.org/10.1007/978-3-030-29959-0_35

2019-01-01

Abstract:First proposed in CryptoNote, a collection of popular privacy-centric cryptocurrencies have employed Linkable Ring Signature and a corresponding Key Derivation Mechanism (KeyDerM) for keeping the payer and payee of a transaction anonymous and unlinkable. The KeyDerM is used for generating a fresh signing key and the corresponding public key, referred to as a stealth address, for the transaction payee. The stealth address will then be used in the linkable ring signature next time when the payee spends the coin. However, in all existing works, including Monero, the privacy model only considers the two cryptographic primitives separately. In addition, to be applied to cryptocurrencies, the security and privacy models for Linkable Ring Signature should capture the situation that the public key ring of a signature may contain keys created by an adversary (referred to as adversarially-chosen-key attack), since in cryptocurrencies, it is normal for a user (adversary) to create self-paying transactions so that some maliciously created public keys can get into the system without being detected .In this paper, we propose a new cryptographic primitive, referred to as Linkable Ring Signature Scheme with Stealth Addresses (SALRS), which comprehensively and strictly captures the security and privacy requirements of hiding the payer and payee of a transaction in cryptocurrencies, especially the adversarially-chosen-key attacks. We also propose a lattice-based SALRS construction and prove its security and privacy in the random oracle model. In other words, our construction provides strong confidence on security and privacy in twofolds, i.e., being proved under strong models which capture the practical scenarios of cryptocurrencies, and being potentially quantum-resistant. The efficiency analysis also shows that our lattice-based SALRS scheme is practical for real implementations.

Shengke Zeng,Shaoquan Jiang,Zhiguang Qin

DOI: https://doi.org/10.1007/978-3-642-22685-4_42

2011-01-01

Abstract:A conditionally anonymous ring signature, first studied by Komano et al. (RSA06) (termed as a deniable ring signature), is a ring signature except that the anonymity is conditional. Specifically, it allows an entity to confirm/refute that he generated a signature. A group signature also has conditional anonymity since a group manager can revoke a signer's anonymity. However, the group in this case is fixed, unlike a ring signature where a group is ad hoc. In this paper, we construct a new conditionally anonymous ring signature. Our signing/verification algorithms are asymptotically most efficient, compared with all known schemes. Our confirmation/disavowal protocols are non-interactive with constant costs while the known schemes have a cost linear in either ring size n or security parameter s.

Jian Jiang,Yulong Gao,Yile Li

DOI: https://doi.org/10.1109/access.2024.3376385

IF: 3.9

2024-03-27

IEEE Access

Abstract:Applying blockchain to copyright protection is currently a popular research trend. However, the characteristics of blockchain open data also lead to the threat of copyright privacy leakage. Targeting at this issue, we design a secure digital copyright protection scheme based on blockchain and ring signature algorithm, which can achieve privacy protection of copyright information and improve the efficiency of data authentication. In this paper, we design a new ring signature scheme based on lattice. In this scheme, by using the lattice basis delegation algorithm, user's public-private key pair is generated without expanding the dimension of lattice. Subsequently, according to the rejection sampling, message is signed by signer's secret keys and other ring participants' public keys. It can reduce scheme's computational complexity. Finally, by combining ring signatures with blockchain technology, a new copyright protection scheme is proposed. More importantly, this scheme is proven to be secure with its correctness and anonymity. Meanwhile, it has less communication costs and shorter key sizes than those in other similar schemes. The results show that the proposed new scheme has good performance and efficiency.

computer science, information systems,telecommunications,engineering, electrical & electronic