Towards Practical Lattice-Based One-Time Linkable Ring Signatures

Carsten Baum, Huang Lin, Sabine Oechsner

Research output: Chapter in Book/Report/Conference proceedingConference contribution


Ring signatures, as introduced by Rivest, Shamir, and Tauman (Asiacrypt '01), allow to generate a signature for a message on behalf of an ad-hoc set of parties. To sign a message, only the public keys must be known and these can be generated independently. It is furthermore not possible to identify the actual signer based on the signature. Ring signatures have recently gained attention due to their applicability in the construction of practical anonymous cryptocurrencies, where they are used to secure transactions while hiding the identity of the actual spender. To be applicable in that setting, ring signatures must allow to determine when a party signed multiple transactions, which is done using a property called linkability.
Original languageEnglish
Title of host publicationInformation and Communications Security
EditorsDavid Naccache, Shouhuai Xu, Sihan Qing, Pierangela Samarati, Gregory Blanc, Rongxing Lu, Zonghua Zhang, Ahmed Meddahi
Place of PublicationCham
PublisherSpringer International Publishing
Number of pages20
ISBN (Electronic)978-3-030-01950-1
ISBN (Print)978-3-030-01949-5
Publication statusPublished - 26 Oct 2018
Event20th International Conference on Information and Communications Security - Lille, France
Duration: 29 Oct 201831 Oct 2018

Publication series

NameLecture Notes in Computer Science
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349


Conference20th International Conference on Information and Communications Security
Abbreviated titleICICS 2018
Internet address


Dive into the research topics of 'Towards Practical Lattice-Based One-Time Linkable Ring Signatures'. Together they form a unique fingerprint.

Cite this