Paper 2023/388

Non-Interactive Blind Signatures for Random Messages

Lucjan Hanzlik, CISPA Helmholtz Center for Information Security
Abstract

Blind signatures allow a signer to issue signatures on messages chosen by the signature recipient. The main property is that the recipient's message is hidden from the signer. There are many applications, including Chaum's e-cash system and Privacy Pass, where no special distribution of the signed message is required, and the message can be random. Interestingly, existing notions do not consider this practical use case separately. In this paper, we show that constraining the recipient's choice over the message distribution spawns a surprising new primitive that improves the well-established state-of-the-art. We formalize this concept by introducing the notion of non-interactive blind signatures (${\sf NIBS}$). Informally, the signer can create a presignature with a specific recipient in mind, identifiable via a public key. The recipient can use her secret key to finalize it and receive a blind signature on a random message determined by the finalization process. The key idea is that online interaction between the signer and recipient is unnecessary. We show an efficient instantiation of ${\sf NIBS}$ in the random oracle model from signatures on equivalence classes. The exciting part is that, in this case, for the recipient's public key, we can use preexisting keys for Schnorr, ECDSA signatures, El-Gamal encryption scheme, or even the Diffie-Hellman key exchange. Reusing preexisting public keys allows us to distribute anonymous tokens similarly to cryptocurrency airdropping. Additional contributions include tagged non-interactive blind signatures (${\sf TNIBS}$) and their efficient instantiation. A generic construction in the random oracle or common reference string model based on verifiable random functions, standard signatures, and non-interactive proof systems.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
A major revision of an IACR publication in EUROCRYPT 2023
Keywords
Blind SignaturesNon-Interactive SchemeRandom Oracle ModelSignatures on Equivalence Classes
Contact author(s)
hanzlik @ cispa de
History
2023-03-24: approved
2023-03-17: received
See all versions
Short URL
https://ia.cr/2023/388
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2023/388,
      author = {Lucjan Hanzlik},
      title = {Non-Interactive Blind Signatures for Random Messages},
      howpublished = {Cryptology {ePrint} Archive, Paper 2023/388},
      year = {2023},
      url = {https://eprint.iacr.org/2023/388}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.