How to Leak a Secret Export

@inproceedings{ring_signature, address = {London, UK}, author = {Rivest, Ronald L. and Shamir, Adi and Tauman, Yael}, booktitle = {ASIACRYPT '01: Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Security}, citeulike-article-id = {3733236}, citeulike-linkout-0 = {http://portal.acm.org/citation.cfm?id=717015}, comment = {There is no way to revoke the anonymity of the actual signer (unless the signer exposes himself (verifiable ring signature)). ID-based ring signature: public key is computed from id. Linkable Ring signature. verifiable ring signature scheme: if the actual signer is willing to prove to the recipient that he signed the signature, then the recipient can correctly determine whether this is the fact. Accountable ring signature: anyone can verify the signature is generated by a user belonging to a set of possible signers whereas the actual signer can nevertheless be identified by a designated trusted entity. ---=note-separator=--- short ring signature: signature size is independent of the group size. ring authenticated encryption: Only the designated police can obtain the clue by decrypting the valid ring authenticated encryption signature. If the clue is not the most important, As just keeps silent, and none can identify that he is the provider of the clue; if the clue is the most important, As can prove to the police (or any third party if necessary) that it is he who provides the clue, by showing some parameters that none else could generate. ---=note-separator=--- The concept of the authenticated encryption scheme is first introduced by Horster et al. [10] in 1994, which aims to achieve the purpose that the signature can only be verified by some designated recipients while the message is kept secret from the public.}, isbn = {3-540-42987-5}, keywords = {ring, signature}, pages = {552--565}, posted-at = {2008-12-01 17:59:01}, priority = {0}, publisher = {Springer-Verlag}, title = {How to Leak a Secret}, url = {http://portal.acm.org/citation.cfm?id=717015}, year = {2001} }

TY - CONF ID - ring_signature L3 - citeulike-article-id:3733236 SN - 3-540-42987-5 AD - London, UK EP - 565 TI - How to Leak a Secret PB - Springer-Verlag T2 - ASIACRYPT '01: Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Security SP - 552 KW - ring KW - signature N1 - There is no way to revoke the anonymity of the actual signer (unless the signer exposes himself (verifiable ring signature)). ID-based ring signature: public key is computed from id. Linkable Ring signature. verifiable ring signature scheme: if the actual signer is willing to prove to the recipient that he signed the signature, then the recipient can correctly determine whether this is the fact. Accountable ring signature: anyone can verify the signature is generated by a user belonging to a set of possible signers whereas the actual signer can nevertheless be identified by a designated trusted entity. N1 - short ring signature: signature size is independent of the group size. ring authenticated encryption: Only the designated police can obtain the clue by decrypting the valid ring authenticated encryption signature. If the clue is not the most important, As just keeps silent, and none can identify that he is the provider of the clue; if the clue is the most important, As can prove to the police (or any third party if necessary) that it is he who provides the clue, by showing some parameters that none else could generate. N1 - The concept of the authenticated encryption scheme is first introduced by Horster et al. [10] in 1994, which aims to achieve the purpose that the signature can only be verified by some designated recipients while the message is kept secret from the public. AU - Rivest, Ronald AU - Shamir, Adi AU - Tauman, Yael PY - 2001/// UR - http://portal.acm.org/citation.cfm?id=717015 ER -