Generic Adaptor Signature

Adaptor signature is becoming an increasingly important tool in solving the scalability and interoperability issues of blockchain application. It has many useful properties, such as reducing the on-chain communication cost, increasing the fungibility of transactions and circumventing the limitation of the blockchain’s scripting language. In this paper, we propose the first generic construction of adaptor signatures from Type-T canonical identification, which includes discretelogarithm-based, RSA-based and lattice-based constructions. Our generic construction can be used as a general framework to combine with different privacy-preserving cryptosystems. We propose blind adaptor signature and linkable ring adaptor signature, which are useful in different blockchain applications.

[1]  Tancrède Lepoint,et al.  On the (in)Security of ROS , 2022, Journal of Cryptology.

[2]  Masayuki Abe,et al.  1-out-of-n Signatures from a Variety of Keys , 2002, IEICE Trans. Fundam. Electron. Commun. Comput. Sci..

[3]  Giulio Malavolta,et al.  Anonymous Multi-Hop Locks for Blockchain Scalability and Interoperability , 2019, NDSS.

[4]  Dieter Gollmann,et al.  A New Blind ECDSA Scheme for Bitcoin Transaction Anonymity , 2019, IACR Cryptol. ePrint Arch..

[5]  L. Fournier,et al.  One-Time Verifiably Encrypted Signatures A.K.A. Adaptor Signatures , 2020 .

[6]  Zekeriya Erkin,et al.  Post-Quantum Adaptor Signatures and Payment Channel Networks , 2020, IACR Cryptol. ePrint Arch..

[7]  Shen Noether,et al.  Ring SIgnature Confidential Transactions for Monero , 2015, IACR Cryptol. ePrint Arch..

[8]  Pedro Moreno-Sanchez,et al.  Generalized Bitcoin-Compatible Channels , 2020, IACR Cryptol. ePrint Arch..

[9]  C. P. Schnorr,et al.  Efficient Identification and Signatures for Smart Cards (Abstract) , 1989, EUROCRYPT.

[10]  Chanathip Namprempre,et al.  From Identification to Signatures Via the Fiat–Shamir Transform: Necessary and Sufficient Conditions for Security and Forward-Security , 2008, IEEE Transactions on Information Theory.

[11]  Jean-Jacques Quisquater,et al.  A "Paradoxical" Indentity-Based Signature Scheme Resulting from Zero-Knowledge , 1988, CRYPTO.

[12]  Giulio Malavolta,et al.  Lockable Signatures for Blockchains: Scriptless Scripts for All Signatures , 2021, 2021 IEEE Symposium on Security and Privacy (SP).

[13]  Jonathan Katz,et al.  Efficiency improvements for signature schemes with tight security reductions , 2003, CCS '03.

[14]  Joseph K. Liu,et al.  Linkable Spontaneous Anonymous Group Signature for Ad Hoc Groups (Extended Abstract) , 2004, ACISP.

[15]  Georg Fuchsbauer,et al.  Blind Schnorr Signatures and Signed ElGamal Encryption in the Algebraic Group Model , 2020, EUROCRYPT.

[16]  Sebastian Faust,et al.  Two-Party Adaptor Signatures From Identification Schemes , 2021, IACR Cryptol. ePrint Arch..