|
Pairing-Free Blind Signatures from Standard Assumptions in the ROM| title | Pairing-Free Blind Signatures from Standard Assumptions in the ROM |
|---|
| start_date | 2024/10/08 |
|---|
| schedule | 11h |
|---|
| online | no |
|---|
| location_info | salle 3052 |
|---|
| summary | Blind Signatures are a useful primitive for privacy preserving applications such as electronic payments, e-voting, anonymous credentials, and more.
However, existing practical blind signature schemes based on standard assumptions require either pairings or lattices. We present the first practical construction of a round-optimal blind signature in the random oracle model based on standard assumptions without resorting to pairings or lattices. In particular, our construction is secure under the strong RSA assumption and DDH (in pairing-free groups). For our construction, we provide a NIZK-friendly signature based on strong RSA, and efficiently instantiate a variant of Fischlin's generic framework (CRYPTO'06). Our Blind Signature scheme has signatures of size 4.28 KB and communication cost 10.98 KB. On the way, we develop techniques that might be of independent interest. In particular, we provide efficient *relaxed* range-proofs for large ranges with subversion zero-knowledge and compact commitments to elements of arbitrary groups.
Joint work with Michael Reichle and Ky Nguyen. |
|---|
| responsibles | Szabó |
|---|
Workflow history| from state (1) | to state | comment | date |
|---|
| submitted | published | | 2024/10/03 13:44 UTC |
| |
|