We observe that for some applications the full power of group signatures is not necessary. For example, a group signature can be verified by any third party, while in many applications such a universal verifiability is not needed or even not desired. Motivated by this observation, we propose a notion of \emph{group message authentication}, which can be viewed as a relaxation of group signatures. Group message authentication enjoys the group-oriented features of group signatures, while dropping some of the features which are not needed in many real-life scenarios. An example application of group message authentication is an implementation of an \emph{anonymous} credit card.
We present a generic implementation of group message authentication, and also propose an efficient concrete implementation based on standard assumptions, namely strong RSA and DDH.
Category / Keywords: public-key cryptography / Publication Info: Conference version appeared at Conference on Security and Cryptography for Networks 2010 (SCN 2010) Date: received 18 Nov 2010 Contact author: dog at csc kth se Available formats: PDF | BibTeX Citation Version: 20101120:200114 (All versions of this report) Discussion forum: Show discussion | Start new discussion