Paper 2003/096

Secure Proxy Signature Schemes for Delegation of Signing Rights

Alexandra Boldyreva, Adriana Palacio, and Bogdan Warinschi


A proxy signature scheme permits an entity to delegate its signing rights to another entity. These schemes have been suggested for use in numerous applications, particularly in distributed computing. But to date, no proxy signature schemes with guaranteed security have been proposed; no precise definitions or proofs of security have been provided for such schemes. In this paper, we formalize a notion of security for proxy signature schemes and present provably-secure schemes. We analyze the security of the well-known delegation-by-certificate scheme and show that after some slight but important modifications, the resulting scheme is secure, assuming the underlying standard signature scheme is secure. We then show that employment of the recently introduced aggregate signature schemes permits bandwidth and computational savings. Finally, we analyze the proxy signature scheme of Kim, Park and Won, which offers important performance benefits. We propose modifications to this scheme that preserve its efficiency, and yield a proxy signature scheme that is provably secure in the random-oracle model, under the discrete-logarithm assumption.

Note: A few recent references are added.

Available format(s)
Cryptographic protocols
Publication info
Published elsewhere. Unknown where it was published
Applied cryptographydigital signature schemesproxy signature schemesaggregate signature
Contact author(s)
sasha @ gatech edu
2008-02-03: last of 2 revisions
2003-05-21: received
See all versions
Short URL
Creative Commons Attribution


      author = {Alexandra Boldyreva and Adriana Palacio and Bogdan Warinschi},
      title = {Secure Proxy Signature Schemes for Delegation of Signing Rights},
      howpublished = {Cryptology ePrint Archive, Paper 2003/096},
      year = {2003},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.