Paper 2005/188

Group Signature where Group Manager, Members and Open Authority are Identity-Based

Victor K. Wei, Tsz Hon Yuen, and Fangguo Zhang


We present the first group signature scheme with provable security and signature size $O(\lambda)$ bits where the group manager, the group members, and the Open Authority (OA) are all identity-based. We use the security model of Bellare, Shi, and Zhang, except to add three identity managers for manager, members, and OA respectively, and we discard the Open Oracle. Our construction uses identity-based signatures summarized in Bellare, Namprempre, and Neven for manager, Boneh and Franklin's IBE for OA, and we extend Bellare et al.'s group signature construction by verifiably encrypt an image of the member public key, instead of the public key itself. The last innovation is crucial in our efficiency; otherwise, Camenisch and Damgard's verifiable encryption would have to be used resulting in lower efficiency.

Note: Full version of the paper in ACISP 2005.

Available format(s)
Public-key cryptography
Publication info
Published elsewhere. ACISP 2005
group signatures
Contact author(s)
thyuen4 @ ie cuhk edu hk
2005-06-22: received
Short URL
Creative Commons Attribution


      author = {Victor K.  Wei and Tsz Hon Yuen and Fangguo Zhang},
      title = {Group Signature where Group Manager, Members and Open Authority are Identity-Based},
      howpublished = {Cryptology ePrint Archive, Paper 2005/188},
      year = {2005},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.