论文信息 - Assessing cryptographic signature schemes from a legal perspective

Assessing cryptographic signature schemes from a legal perspective

As handwritten signatures are being replaced by electronic signatures, the study of electronic signatures is crucial. Research related to electronic signatures is briefly divided into two areas, namely cryptography and legal research. In the area of cryptography, it focuses on security notions of signature schemes. In the area of legal research, it focuses on the legal framework to facilitate the use of electronic signatures, especially for the applications of electronic commerce. However, research studies are rarely cross-reference to each other. From a legal perspective, an electronic signature must satisfy specific requirements in order to be recognized in law. In this paper, we propose an assessment framework for cryptographic signature schemes based on the legal requirements for electronic signatures. We further carry out the assessment for several cryptographic signature schemes and find a failure of a well-recognized scheme. It means that electronic signatures from such scheme are not likely to be recognized in law. To our best knowledge, our study is the first research work to address the interaction between legal requirements for electronic signatures and cryptographic signature schemes.

Siu-Ming Yiu | Lucas Chi Kwong Hui | Dan T. F. Chan | L. Hui | S. Yiu

[1] Jacques Stern,et al. Provably Secure Blind Signature Schemes , 1996, ASIACRYPT.

[2] Eiji Okamoto,et al. Proxy signatures for delegating signing operation , 1996, CCS '96.

[3] Adi Shamir,et al. A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.

[4] Bogdan Warinschi,et al. Secure Proxy Signature Schemes for Delegation of Signing Rights , 2010, Journal of Cryptology.

[5] Mihir Bellare,et al. Foundations of Group Signatures: Formal Definitions, Simplified Requirements, and a Construction Based on General Assumptions , 2003, EUROCRYPT.

[6] Mihir Bellare,et al. The Exact Security of Digital Signatures - HOw to Sign with RSA and Rabin , 1996, EUROCRYPT.

[7] David Chaum,et al. Blind Signatures for Untraceable Payments , 1982, CRYPTO.

[8] Yael Tauman Kalai,et al. How to Leak a Secret: Theory and Applications of Ring Signatures , 2001, Essays in Memory of Shimon Even.

[9] Silvio Micali,et al. A Digital Signature Scheme Secure Against Adaptive Chosen-Message Attacks , 1988, SIAM J. Comput..

[10] Jonathan Katz,et al. Ring Signatures: Stronger Definitions, and Constructions without Random Oracles , 2005, IACR Cryptol. ePrint Arch..

[11] David Chaum,et al. Group Signatures , 1991, EUROCRYPT.

[12] Xiaoyun Wang,et al. How to Break MD5 and Other Hash Functions , 2005, EUROCRYPT.