Paper 2021/1183

ZKAttest: Ring and Group Signatures for Existing ECDSA Keys

Armando Faz-Hernández, Watson Ladd, and Deepak Maram

Abstract

Cryptographic keys are increasingly stored in dedicated hardware or behind software interfaces. Doing so limits access, such as permitting only signing via ECDSA. This makes using them in existing ring and group signature schemes impossible as these schemes assume the ability to access the private key for other operations. We present a $\Sigma$-protocol that uses a committed public key to verify an ECDSA or Schnorr signature on a message, without revealing the public key. We then discuss how this protocol may be used to derive ring signatures in combination with Groth–Kohlweiss membership proofs and other applications. This scheme has been implemented and source code is freely available.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. Selected Areas in Cryptography -- SAC 2021
DOI
10.1007/978-3-030-99277-4_4
Keywords
ring signaturezero knowledgesigma protocolapplications
Contact author(s)
armfazh @ cloudflare com
watson @ cloudflare com
History
2022-03-31: last of 2 revisions
2021-09-14: received
See all versions
Short URL
https://ia.cr/2021/1183
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/1183,
      author = {Armando Faz-Hernández and Watson Ladd and Deepak Maram},
      title = {{ZKAttest}: Ring and Group Signatures for Existing {ECDSA} Keys},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/1183},
      year = {2021},
      doi = {10.1007/978-3-030-99277-4_4},
      url = {https://eprint.iacr.org/2021/1183}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.