How to prove yourself: practical solutions to identification and signature problems
Proceedings on Advances in cryptology---CRYPTO '86
Simple forward-secure signatures from any signature scheme
Proceedings of the 7th ACM conference on Computer and communications security
Accountable-subgroup multisignatures: extended abstract
CCS '01 Proceedings of the 8th ACM conference on Computer and Communications Security
Introduction to cryptography: principles and applications
Introduction to cryptography: principles and applications
A Forward-Secure Digital Signature Scheme
CRYPTO '99 Proceedings of the 19th Annual International Cryptology Conference on Advances in Cryptology
Forward-Secure Signatures with Optimal Signing and Verifying
CRYPTO '01 Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology
Efficient Generic Forward-Secure Signatures with an Unbounded Number Of Time Periods
EUROCRYPT '02 Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques: Advances in Cryptology
A New Forward-Secure Digital Signature Scheme
ASIACRYPT '00 Proceedings of the 6th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Forward-secure signatures with fast key update
SCN'02 Proceedings of the 3rd international conference on Security in communication networks
Hi-index | 0.00 |
In many applications a document needs to be signed by more than one signer. When a signature depends on more than one signer we call it a multi-signature. Further, ordinary digital signatures have an inherent weakness: if the secret key is leaked, then all signatures, even the ones generated before the leak, are no longer trustworthy. Forward-secure digital signatures were proposed to address this weakness, they ensure that the past signatures remain secure even if the current secret key is leaked. We propose to apply the concept of Forward-Security to multi-signatures. The basic signature scheme that we have considered is ElGamal Signature scheme which is based on discrete log problem. We initially make this signature scheme forward-secure and then apply it to multi-signatures. By this all signers of the document can guarantee the security of document signed in the past even if their secret key is exposed today. An adversary will not be able to forge a multi-signature unless the secret key of all the signers are compromised in the same time period, which is practically not possible. Further, we propose two types of Forward-Secure multi-signatures : Forward-Secure Parallel multi-signatures and Forward-Secure Serial multi-signatures. Once a user switches to use forward-secure signatures in place of ordinary signatures, he can easily extend it to use it as a multi-signature. In all applications where parallel or serial multi-signatures are used, the corresponding forward-secure multi-signatures can be used.