Cryptology ePrint Archive: Report 2005/422

On Anonymity of Group Signatures

Zhou Sujing and Lin Dongdai

Abstract: A secure group signature is required to be anonymous, that is, given two group signatures generated by two different members on the same message or two group signatures generated by the same member on two different messages, they are indistinguishable except for the group manager. In this paper we prove the equivalence of a group signature's anonymity and its indistinguishability against chosen ciphertext attacks if we view a group signature as an encryption of member identity. Particularly, we prove ACJT's group signature is IND-CCA2 secure, so ACJT's scheme is anonymous in the strong sense. The result is an answer to an open question in literature.

Category / Keywords: public-key cryptography /

Publication Info: CIS 2005 (International conference on Computational Intelligence and Security)

Date: received 21 Nov 2005

Contact author: zhousujing at is iscas ac cn

Available formats: PDF | BibTeX Citation

Note: Full paper

Version: 20051122:210614 (All versions of this report)

Discussion forum: Show discussion | Start new discussion