Helger Lipmaa's publications

On Delegatability of Four Designated Verifier Signatures

Yong Li, Helger Lipmaa and Dingyi Pei. On Delegatability of Four Designated Verifier Signatures. In Sihan Qing, Wenbo Mao, Javier Lopez and Guilin Wang, editors, Information and Communications Security: 7th International Conference, ICICS 2005, volume 3783 of Lecture Notes in Computer Science, pages 61--71, Beijing, China, December 10--13, 2005. Springer, Heidelberg.

File: [.ps.bz2 (80 KB), .pdf (128 KB)] ps recommended.


In a paper recently published in ICALP 2005, Lipmaa, Wang and Bao identified a new essential security property, non-delegatability, of designated verifier signature (DVS) schemes. Briefly, in a non-delegatable DVS scheme, neither a signer nor a designated verifier can delegate the signing rights to any third party T without revealing their secret keys. We show that the Susilo-Zhang-Mu identity-based strong DVS scheme, Ng-Susilo-Mu universal designated multi verifier signature scheme, the Laguillaumie-Vergnaud multi-DVS scheme and the Zhang-Furukawa-Imai universal DVS scheme are delegatable. Together with the results of Lipmaa, Wang and Bao, our results show that most of the previously proposed DVS schemes are delegatable. However, the Laguillaumie-Vergnaud and Zhang-Furukawa-Imai schemes may still be secure in practice, since there the only party who can delegate signing is the designated verifier, who may not have motivation to do so. We finish the paper with some discussion on whether the the non-delegatability notion of Lipmaa, Wang and Bao is appropriate.

Keywords: Designated verifier signatures, non-delegatability.


Comment: The second attack on SZM04 does not work (thanks to Guilin Wang for notifying it). Other attacks are correct.

More information: Publisher Webpage.

DOI: 10.1007/11602897_6


Page by Helger Lipmaa. Send your inqueries to <helger.lipmaa><at>gmail.com.