Ring signature

This article uses bare URLs, which are uninformative and vulnerable to link rot. Please consider converting them to full citations to ensure the article remains verifiable and maintains a consistent citation style. Several templates and tools are available to assist in formatting, such as Reflinks (documentation), reFill (documentation) and Citation bot (documentation).  (September 2022) (Learn how and when to remove this template message)

Ring signature

In <a href="/en/Cryptography" title="Cryptography" class="wl">cryptography</a>, a ring signature is a type of <a href="/en/Digital_signature" title="Digital signature" class="wl">digital signature</a> that can be performed by any member of a set of users that each have <a href="/en/Key_(cryptography)" title="Key (cryptography)" class="wl">keys</a>. Therefore, a message signed with a ring signature is endorsed by someone in a particular set of people. One of the security properties of a ring signature is that it should be computationally infeasible to determine which of the set's members' keys was used to produce the signature. Ring signatures are similar to <a href="/en/Group_signature" title="Group signature" class="wl">group signatures</a> but differ in two key ways: first, there is no way to revoke the anonymity of an individual signature; and second, any set of users can be used as a signing set without additional setup.

<style data-mw-deduplicate="TemplateStyles:r1097763485" typeof="mw:Extension/templatestyles mw:Transclusion">.mw-parser-output .ambox{border:1px solid #a2a9b1;border-left:10px solid #36c;background-color:#fbfbfb;box-sizing:border-box}.mw-parser-output .ambox+link+.ambox,.mw-parser-output .ambox+link+style+.ambox,.mw-parser-output .ambox+link+link+.ambox,.mw-parser-output .ambox+.mw-empty-elt+link+.ambox,.mw-parser-output .ambox+.mw-empty-elt+link+style+.ambox,.mw-parser-output .ambox+.mw-empty-elt+link+link+.ambox{margin-top:-1px}html body.mediawiki .mw-parser-output .ambox.mbox-small-left{margin:4px 1em 4px 0;overflow:hidden;width:238px;border-collapse:collapse;font-size:88%;line-height:1.25em}.mw-parser-output .ambox-speedy{border-left:10px solid #b32424;background-color:#fee7e6}.mw-parser-output .ambox-delete{border-left:10px solid #b32424}.mw-parser-output .ambox-content{border-left:10px solid #f28500}.mw-parser-output .ambox-style{border-left:10px solid #fc3}.mw-parser-output .ambox-move{border-left:10px solid #9932cc}.mw-parser-output .ambox-protection{border-left:10px solid #a2a9b1}.mw-parser-output .ambox .mbox-text{border:none;padding:0.25em 0.5em;width:100%}.mw-parser-output .ambox .mbox-image{border:none;padding:2px 0 2px 0.5em;text-align:center}.mw-parser-output .ambox .mbox-imageright{border:none;padding:2px 0.5em 2px 0;text-align:center}.mw-parser-output .ambox .mbox-empty-cell{border:none;padding:0;width:1px}.mw-parser-output .ambox .mbox-image-div{width:52px}html.client-js body.skin-minerva .mw-parser-output .mbox-text-span{margin-left:23px!important}@media(min-width:720px){.mw-parser-output .ambox{margin:0 10%}}</style>
Ring signatures were invented by <a href="/en/Ron_Rivest" title="Ron Rivest" class="wl">Ron Rivest</a>, <a href="/en/Adi_Shamir" title="Adi Shamir" class="wl">Adi Shamir</a>, and <a href="/en/Yael_Tauman_Kalai" title="Yael Tauman Kalai" class="wl">Yael Tauman Kalai</a>, and introduced at <a href="/en/ASIACRYPT" title="ASIACRYPT" class="mw-redirect wl">ASIACRYPT</a> in 2001.<a href="#cite_note-1" style="counter-reset: mw-Ref 1;">[1]</a> The name, ring signature, comes from the ring-like structure of the signature <a href="/en/Algorithm" title="Algorithm" class="wl">algorithm</a>.

In cryptography, a ring signature is a type of digital signature that can be performed by any member of a set of users that each have keys.  Therefore, a message signed with a ring signature is endorsed by someone in a particular set of people.  One of the security properties of a ring signature is that it should be computationally infeasible to determine which of the set's members' keys was used to produce the signature.  Ring signatures are similar to group signatures but differ in two key ways: first, there is no way to revoke the anonymity of an individual signature; and second, any set of users can be used as a signing set without additional setup. Ring signatures were invented by Ron Rivest, Adi Shamir, and Yael Tauman Kalai, and introduced at ASIACRYPT in 2001.  The name, ring signature, comes from the ring-like structure of the signature algorithm. 