Paper 2017/1197
Reassessing Security of Randomizable Signatures
David Pointcheval and Olivier Sanders
Abstract
The Camenisch-Lysyanskaya (CL) signature is a very popular tool in cryptography, especially among privacy-preserving constructions. Indeed, the latter benefit from their numerous features such as randomizability.
Following the evolution of pairing-based cryptography, with the move from symmetric pairings to asymmetric pairings, Pointcheval and Sanders (PS) proposed at CT-RSA '16 an alternative scheme which improves performances while keeping the same properties.
Unfortunately, CL and PS signatures raise concerns in the cryptographic community because they both rely on interactive assumptions that essentially state their EUF-CMA security. This lack of precise security assessment is obviously a barrier to a widespread use of these signatures and a reason for preferring other constructions, such as the ones relying on
Metadata
- Available format(s)
-
PDF
- Category
- Public-key cryptography
- Publication info
- Published elsewhere. Major revision. CT-RSA '18
- Keywords
- bilinear pairingsrandomizable signaturecomputational assumption
- Contact author(s)
- olivier sanders @ orange com
- History
- 2017-12-18: received
- Short URL
- https://ia.cr/2017/1197
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2017/1197,
author = {David Pointcheval and Olivier Sanders},
title = {Reassessing Security of Randomizable Signatures},
howpublished = {Cryptology {ePrint} Archive, Paper 2017/1197},
year = {2017},
url = {https://eprint.iacr.org/2017/1197}
}
