Paper 2008/047

Fair Traceable Multi-Group Signatures

Vicente Benjumea, Seung Geol Choi, Javier Lopez, and Moti Yung


This paper presents fair traceable multi-group signatures (FTMGS), which have enhanced capabilities, compared to group and traceable signatures, that are important in real world scenarios combining accountability and anonymity. The main goal of the primitive is to allow multiple groups that are managed separately (managers are not even aware of the other ones), yet allowing users (in the spirit of the Identity 2.0 initiative) to manage what they reveal about their identity with respect to these groups by themselves. This new primitive incorporates the following additional features. - While considering multiple groups it discourages users from sharing their private membership keys through two orthogonal and complementary approaches. In fact, it merges functionality similar to credential systems with anonymous type of signing with revocation. - The group manager now mainly manages joining procedures, and new entities (called fairness authorities and consisting of various representatives, possibly) are involved in opening and revealing procedures. In many systems scenario assuring fairness in anonymity revocation is required. We specify the notion and implement it in the random oracle model.

Available format(s)
Cryptographic protocols
Publication info
Published elsewhere. Financial Cryptography 2008 (extended version of)
digital signaturesgroup signaturestraceable signatures
Contact author(s)
sgchoi @ cs columbia edu
2008-01-30: received
Short URL
Creative Commons Attribution


      author = {Vicente Benjumea and Seung Geol Choi and Javier Lopez and Moti Yung},
      title = {Fair Traceable Multi-Group Signatures},
      howpublished = {Cryptology ePrint Archive, Paper 2008/047},
      year = {2008},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.