Group signatures allow members of a group to sign anonymously on group's behalf. However, in exceptional cases, the anonymity can be revoked by a group manager. One of the most difficult tasks in developing group signature schemes is to prevent coalition attacks: malicious collusions of group members that produce untraceable signatures. This paper describes coalition attacks against some recently proposed group signature schemes. It also presents a candidate scheme resistant against coalition attacks; its security is based on a widely accepted number-theoretic assumption. The paper also includes a survey of notable group signature schemes.
By: G. Ateniese, M. Joye, and G. Tsudik
Published in: RZ3141 in 1999
LIMITED DISTRIBUTION NOTICE:
This Research Report is available. This report has been submitted for publication outside of IBM and will probably be copyrighted if accepted for publication. It has been issued as a Research Report for early dissemination of its contents. In view of the transfer of copyright to the outside publisher, its distribution outside of IBM prior to publication should be limited to peer communications and specific requests. After outside publication, requests should be filled only by reprints or legally obtained copies of the article (e.g., payment of royalties). I have read and understand this notice and am a member of the scientific community outside or inside of IBM seeking a single copy only.
Questions about this service can be mailed to reports@us.ibm.com .