The generic transformation from standard signatures to identity-based aggregate signatures

Abstract

Aggregate signature system allows a collection of signatures can be compressed into one short signature. Identity-based signature schemes (IBS) allow a signer to sign a message, in which the signature can be verified by his identity. The notion of identity-based aggregate signatures (IBAS) were formally introduced by Gentry and Ramzan (PKC’06). Over the past decade, several constructions of IBAS have been proposed, which are restricted to share a common token or require sequential additions. The problem about how to achieve IBAS from standard signatures still is not resolved. In this work, we present a generic transformation that yields IBAS schemes starting with standard signature schemes. Specifically, we provide a generic construction of an n-bounded IBAS scheme that can be proven selectively secure in the standard model from any secure signature scheme by using indistinguishability obfuscation and selective onetime universal parameters scheme. The complexity leveraging requires sub-exponential hardness assumption of indistinguishability obfuscation, puncturable PRF and one-way functions.