Paper 2024/128

Non-Binding (Designated Verifier) Signature

Ehsan Ebrahimi, University of Luxembourg
Abstract

We argue that there are some scenarios in which plausible deniability might be desired for a digital signature scheme. For instance, the non-repudiation property of conventional signature schemes is problematic in designing an Instant Messaging system (WPES 2004). In this paper, we formally define a non-binding signature scheme in which the Signer is able to disavow her own signature if she wants, but, the Verifier is not able to dispute a signature generated by the Signer. That is, the Signer is able to convince a third party Judge that she is the owner of a signature without disclosing her secret information. We propose a signature scheme that is non-binding and unforgeable. Our signature scheme is post-quantum secure if the underlying cryptographic primitives are post-quantum secure. In addition, a modification to our nonbinding signature scheme leads to an Instant Messaging system that is of independent interest.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint.
Keywords
Designated Verifier SignaturePlausible DeniabilityEnd-to-End Encryption.
Contact author(s)
eebrahimi pqc @ gmail com
History
2024-01-30: approved
2024-01-29: received
See all versions
Short URL
https://ia.cr/2024/128
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2024/128,
      author = {Ehsan Ebrahimi},
      title = {Non-Binding (Designated Verifier) Signature},
      howpublished = {Cryptology ePrint Archive, Paper 2024/128},
      year = {2024},
      note = {\url{https://eprint.iacr.org/2024/128}},
      url = {https://eprint.iacr.org/2024/128}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.