Posts
-
Let’s design a type of digital signature algorithm that can only be verified by the intended recipients. -
Let’s design a type of digital signature algorithm that can only be verified by the intended recipients.@soatok If I understood it correctly, it relies on the fact that nobody in the group wants to publish their private key. But if a recipient can bear the consequences of publishing it then they can prove that the sender sent it.
To mitigate this problem I can think of a couple of things. One is having a way to ensure that all members of the pack have information that they would never want to reveal, which can be decrypted with their private keys. Another way is kind of the opposite, where all private keys matter so little that they can be leaked and then people can't prove that the sender is the one that actually sent it. In other words, the problem only presents itself when the sender doesn't want their their private key to be published and the recipient doesn't mind if theirs does.
Does that make any sense, or did I misunderstood it?