Since UDVS schemes reduce to standard signatures when no verifier designation is performed, it is natural to ask how to extend the classical Schnorr or RSA signature schemes into UDVS schemes, so that the existing key generation and signing implementation infrastructure for these schemes can be used without modification. We show how this can be efficiently achieved, and provide proofs of security for our schemes in the random oracle model.
Category / Keywords: Signature, Designated-Verifier, Universal Publication Info: This is the full version of a paper to be presented at PKC 2004. Date: received 16 Sep 2003, last revised 14 Dec 2003 Contact author: rons at ics mq edu au Available format(s): Postscript (PS) | Compressed Postscript (PS.GZ) | PDF | BibTeX Citation Note: Several minor changes and corrections have been made to the previous version. Version: 20031215:052016 (All versions of this report) Short URL: ia.cr/2003/193 Discussion forum: Show discussion | Start new discussion