Double-authentication-preventing signatures

Poettering, Bertram & Stebila, Douglas (2015) Double-authentication-preventing signatures. International Journal of Information Security. (In Press)

[img] Accepted Version (PDF 540kB)
Administrators only | Request a copy from author

View at publisher

Abstract

Digital signatures are often used by trusted authorities to make unique bindings between a subject and a digital object; for example, certificate authorities certify a public key belongs to a domain name, and time-stamping authorities certify that a certain piece of information existed at a certain time. Traditional digital signature schemes however impose no uniqueness conditions, so a trusted authority could make multiple certifications for the same subject but different objects, be it intentionally, by accident, or following a (legal or illegal) coercion. We propose the notion of a double-authentication-preventing signature, in which a value to be signed is split into two parts: a subject and a message. If a signer ever signs two different messages for the same subject, enough information is revealed to allow anyone to compute valid signatures on behalf of the signer. This double-signature forgeability property discourages signers from misbehaving—a form of self-enforcement—and would give binding authorities like CAs some cryptographic arguments to resist legal coercion. We give a generic construction using a new type of trapdoor functions with extractability properties, which we show can be instantiated using the group of sign-agnostic quadratic residues modulo a Blum integer; we show an additional application of these new extractable trapdoor functions to standard digital signatures.

Impact and interest:

0 citations in Scopus
Search Google Scholar™

Citation counts are sourced monthly from Scopus and Web of Science® citation databases.

These databases contain citations from different subsets of available publications and different time periods and thus the citation count from each is usually different. Some works are not in either database and no count is displayed. Scopus includes citations from articles published in 1996 onwards, and Web of Science® generally from 1980 onwards.

Citations counts from the Google Scholar™ indexing service can be viewed at the linked Google Scholar™ search.

ID Code: 91376
Item Type: Journal Article
Refereed: Yes
Additional URLs:
Keywords: digital signatures, double signatures, forgeability, extractability, dishonest signer, two-to-one trapdoor functions
DOI: 10.1007/s10207-015-0307-8
ISSN: 1615-5270
Subjects: Australian and New Zealand Standard Research Classification > INFORMATION AND COMPUTING SCIENCES (080000) > DATA FORMAT (080400) > Data Encryption (080402)
Divisions: Current > Schools > School of Electrical Engineering & Computer Science
Current > Institutes > Institute for Future Environments
Current > QUT Faculties and Divisions > Science & Engineering Faculty
Funding:
Copyright Owner: Copyright 2015 Springer-Verlag Berlin Heidelberg
Copyright Statement: The final publication is available at Springer via http://dx.doi.org/10.1007/s10207-015-0307-8
Deposited On: 19 Jan 2016 06:04
Last Modified: 19 Jan 2016 23:01

Export: EndNote | Dublin Core | BibTeX

Repository Staff Only: item control page