Paper 2011/052

Revocable Attribute-Based Signatures with Adaptive Security in the Standard Model

Alex Escala, Javier Herranz, and Paz Morillo


An attribute-based signature with respect to a signing policy, chosen ad-hoc by the signer, convinces the verifier that the signer holds a subset of attributes satisfying that signing policy. Ideally, the verifier must obtain no other information about the identity of the signer or the attributes he holds. This primitive has many applications in real scenarios requiring both authentication and anonymity/privacy properties. We propose in this paper the first attribute-based signature scheme satisfying at the same time the following properties: (1) it admits general signing policies, (2) it is proved secure against fully adaptive adversaries, in the standard model, and (3) the number of elements in a signature depends only on the size of the signing policy. Furthermore, our scheme enjoys the additional property of revocability: an external judge can break the anonymity of a signature, when necessary. This property may be very interesting in real applications where authorities are unwilling to allow full anonymity of users.

Available format(s)
Cryptographic protocols
Publication info
Published elsewhere. Unknown where it was published
attribute-based signaturesGroth-Sahai proofsunforgeabilitynon-linkabilityrevocability
Contact author(s)
jherranz @ ma4 upc edu
2011-01-28: received
Short URL
Creative Commons Attribution


      author = {Alex Escala and Javier Herranz and Paz Morillo},
      title = {Revocable Attribute-Based Signatures with Adaptive Security in the Standard Model},
      howpublished = {Cryptology ePrint Archive, Paper 2011/052},
      year = {2011},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.