A Subgroup Multiple EdDSA Signature Scheme with Temporary Public Key
Bitcoin needs to be stored in a secure wallet,which can only be opened by a private key.If the private key only depends on a signer,it will cause undesirable effects such as excessive concentration of power on transactions.In order to solve this problem,we use Edwards-curve Digital Signature Algorithm(EdDSA)to provide a security strategy for wallet sharing control,and introduce a temporary public key.The signer will generate a new public key each time he signs to increase the confusion of his identity,which can be applied to various scenarios requiring privacy protection,such as anonymous authentication,electronic voting,etc.Thus,a subgroup multiple EdDSA signature scheme with temporary public key is proposed,and the size of the generated signature is equal to that of the standard EdDSA signature.The scheme can resist"Byzantine attack","Rouge-Key attack"and differential fault attack.The robustness of the scheme is defined and proved.Under the random oracle model,relying on the hardness of the Edwards-curve Discrete Logarithm Problem(EdDLP),the scheme is proved to be unforgeable under adaptive selection message attacks.
multiple signaturetemporary public keyEdwards-curve Digital Signature Algorithmcomputational Edwards-curve Discrete Logarithm Problemforking lemma
万方数据
维普
