Paper 2021/1183
ZKAttest: Ring and Group Signatures for Existing ECDSA Keys
Armando Faz-Hernández, Watson Ladd, and Deepak Maram
Abstract
Cryptographic keys are increasingly stored in dedicated hardware or behind software interfaces. Doing so limits access, such as permitting only signing via ECDSA. This makes using them in existing ring and group signature schemes impossible as these schemes assume the ability to access the private key for other operations. We present a $\Sigma$-protocol that uses a committed public key to verify an ECDSA or Schnorr signature on a message, without revealing the public key. We then discuss how this protocol may be used to derive ring signatures in combination with Groth–Kohlweiss membership proofs and other applications. This scheme has been implemented and source code is freely available.
Metadata
- Available format(s)
- Category
- Public-key cryptography
- Publication info
- Published elsewhere. Selected Areas in Cryptography -- SAC 2021
- DOI
- 10.1007/978-3-030-99277-4_4
- Keywords
- ring signaturezero knowledgesigma protocolapplications
- Contact author(s)
-
armfazh @ cloudflare com
watson @ cloudflare com - History
- 2022-03-31: last of 2 revisions
- 2021-09-14: received
- See all versions
- Short URL
- https://ia.cr/2021/1183
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2021/1183, author = {Armando Faz-Hernández and Watson Ladd and Deepak Maram}, title = {{ZKAttest}: Ring and Group Signatures for Existing {ECDSA} Keys}, howpublished = {Cryptology {ePrint} Archive, Paper 2021/1183}, year = {2021}, doi = {10.1007/978-3-030-99277-4_4}, url = {https://eprint.iacr.org/2021/1183} }