Recently, Yi et al. proposed a digital signature scheme using a one-time pair of keys that provides the signer with anonymity with respect to the verifier but not to the certification authority. A new study shows that Yi et al.'s scheme is insecure against forgery because any malicious attacker can generate valid signatures for any message without knowing the legal user's secret keys. That is, even the certification authority cannot identify the identity of the real signer.
All Science Journal Classification (ASJC) codes
- Electrical and Electronic Engineering