* James A. Donald:

> Is there a way of constructing a digital signature so
> that the signature proves that at least m possessors of
> secret keys corresponding to n public keys signed, for n
> a dozen or less, without revealing how many more than m,
> or which ones signed?

What about this?

  Christian Cachin, Asad Samar
  Secure Distributed DNS

Or do you require that potential signers must not be able to prove
that they signed?

The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]

Reply via email to