[Cryptography] Aggregate signatures
Tony Arcieri
bascule at gmail.com
Mon Jun 9 14:17:41 EDT 2014
On Sun, Jun 8, 2014 at 2:47 AM, xor <crypto at idlecore.com> wrote:
> I'm a programmer, I need a way to have several people sign the same
> message, and then send that message to several other people. I'd like to
> be able to scale 'several people' to up to a million, so a list of
> individual signatures doesn't work so well.
So you have M signers and N verifiers, where M>=1000000?
What are the verifiers going to do in this context? Do they want to verify
that any one given key was one of the M used to sign the original message?
Do they want to know if a dozen were used? Or all million?
Who authenticates these keys? How are they disseminated?
--
Tony Arcieri
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20140609/b17231c1/attachment.html>
More information about the cryptography
mailing list