Shamir proposed in 1984 the first identity-based signature scheme, whose security relies on the RSA problem. A similar scheme was proposed by Guillou and Quisquater in 1988. Formal security of these schemes was not argued and/or proved until many years later. Taking the Guillou-Quisquater scheme as the starting point, we design and analyze in this work ring signature schemes and distributed ring signature schemes for identity-based scenarios whose security is based on the hardness of the RSA problem. These are the first identity-based ring signature schemes which do not employ bilinear pairings. Furthermore, the resulting schemes satisfy an interesting property: the real author(s) of a ring signature can later open the anonymity and prove that he is actually the person who signed the message.
Links:
[1] http://www.iiia.csic.es/en/individual/javier-herranz
[2] http://www.iiia.csic.es/en/publications/export/tagged/2807
[3] http://www.iiia.csic.es/en/publications/export/xml/2807
[4] http://www.iiia.csic.es/en/publications/export/bib/2807
[5] http://www.iiia.csic.es/en/project/proprietas
[6] http://www.iiia.csic.es/en/project/ares
[7] http://www.iiia.csic.es/en/project/e-aegis-db-privacy