## Cryptology ePrint Archive: Report 2021/510

Signer and Message Ambiguity from a Variety of Keys

George Teseleanu

Abstract: A signer and message ambiguous signature enables a recipient to request a signer to sign a sensible message such that the signer cannot guess what message he signed and the receiver cannot deduce the signer's identity. In this work, we formalize this type of signature, introduce the corresponding security requirements and describe two instantions. The first one assumes that the signer hides his identity in $n$ independently generated public keys, while the second one assumes that all $n$ public keys share the same public parameters.

Category / Keywords: public-key cryptography / signer and message ambiguity, 1-out-of-n signature, oblivious signature

Original Publication (with minor differences): SECRYPT 2021

Date: received 19 Apr 2021, last revised 19 Apr 2021

Contact author: george teseleanu at yahoo com

Available format(s): PDF | BibTeX Citation

Short URL: ia.cr/2021/510

[ Cryptology ePrint archive ]