This paper initiates the study of the security of signature schemes in the multi-user setting. We argue that the well-accepted notion of security for signature schemes, namely existential unforgeability against adaptive chosen-message attacks, is not adequate for the multi-user setting. We propose an extension of this security notion to the multi-user setting and show that signature schemes proven secure in the single-user setting can, under reasonable constraints, also be proven secure in the multi-user setting.
|Translated title of the contribution||Security of signature schemes in a multi-user setting|
|Pages (from-to)||261 - 274|
|Number of pages||13|
|Journal||Designs, Codes and Cryptography|
|Publication status||Published - Aug 2004|