| 摘要 |
A method of transmitting a message over a network from a sender to a receiver, comprises the steps of: taking a message (Coin) to be signed by the sender; signing the message into a digital signature (e, y) of the sender (steps 56, 58), the digital signature being generated as a function of that message using public and secret signature generators (x, r) of the sender, a private key (s) of the sender, and other publicly known values (a, p, q); and transmitting the signed message over the network to the receiver (step 60); characterised in that: the message to be signed by the sender incorporates a first value (f(x)) which is a first predetermined function (such as a secure one-way hash function) of the sender's public signature generator (x) (step 48). Its is thus possible that the incorporation of a proper first value can be verified by a receiver of the message who requires the sender to sign the message using a public signature generator, and furthermore that if a sender signs and transmits the same message more than once, the private key of the sender can be derived from the plurality of signed messages and a relationship between the public and private signature generators.
|
