Designated verifier signature
{{one source |date=April 2024}}
A designated verifier signature is a signature scheme in which signatures can only be verified by a single, designated verifier, designated as part of the signature creation.
History
Designated verifier signatures were first proposed in 1996 by Jakobsson Markus, Kazue Sako, and Russell Impagliazzo.{{cite conference |url=http://www.informatics.indiana.edu/markus/papers/dvp.pdf|title=Designated Verifier Proofs and Their Applications|first=Markus|last=Jakobsson|author2=Kazue Sako |author3=Russell Impagliazzo |date=May 1996|conference=EUROCRYPT 1996|editor=Ueli Maurer|volume=1440|pages=199–205|book-title=Proceedings of Eurocrypt 1996|publisher=Springer-Verlag|location=Saragossa, Spain|isbn=978-3-540-65069-0|doi=10.1007/3-540-49677-7_30}} Proposed as a way to combine authentication and off-the-record messages, designated verifier signatures allow authenticated, private conversations to take place.
Process
Unlike in undeniable signature scheme the protocol of verifying is non-interactive; i.e., the signer chooses the designated verifier (or the set of designated verifiers) in advance and does not take part in the verification process.