On Sep 8, 2013, at 1:06 PM, Jerry Leichter wrote:
> There was a proposal out there based on something very much like this to 
> create tamper-evident signatures.  I forget the details - it was a couple of 
> years ago - but the idea was that every time you sign something, you modify 
> your key in some random way, resulting in signatures that are still 
> verifiably yours, but also contain the new random modification.  Beyond that, 
> I don't recall how it worked - it was quite clever... ah, here it is:  
> http://eprint.iacr.org/2005/147.pdf
Spoke too quickly - that paper is something else entirely.  I still can't 
locate the one I was thinking of.
                                                        -- Jerry

The cryptography mailing list

Reply via email to