{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,24]],"date-time":"2026-03-24T16:13:02Z","timestamp":1774368782464,"version":"3.50.1"},"reference-count":33,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2024,5,30]],"date-time":"2024-05-30T00:00:00Z","timestamp":1717027200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2024,5,30]],"date-time":"2024-05-30T00:00:00Z","timestamp":1717027200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"name":"CAS Project for Young Scientists in Basic Research","award":["YSBR-035"],"award-info":[{"award-number":["YSBR-035"]}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Cybersecurity"],"abstract":"<jats:title>Abstract<\/jats:title><jats:p>Stealth address protocol (SAP) is widely used in blockchain to achieve anonymity. In this paper, we formalize a key derivable signature scheme (KDS) to capture the functionality and security requirements of SAP. We then propose a framework to construct key separation KDS, which follows the <jats:italic>key separation<\/jats:italic> principle as all existing SAP solutions to avoid the reuse of the master keys in the derivation and signature component. We also study the joint security in KDS and construct a key reusing KDS framework, which implies the first compact stealth address protocol using a single key pair. Finally, we provide instantiations based on the elliptic curve (widely used in cryptocurrencies) and on the lattice (with quantum resistance), respectively.<\/jats:p>","DOI":"10.1186\/s42400-024-00231-x","type":"journal-article","created":{"date-parts":[[2024,5,30]],"date-time":"2024-05-30T05:04:17Z","timestamp":1717045457000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["Key derivable signature and its application in blockchain stealth address"],"prefix":"10.1186","volume":"7","author":[{"ORCID":"https:\/\/orcid.org\/0009-0002-1276-1299","authenticated-orcid":false,"given":"Ruida","family":"Wang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ziyi","family":"Li","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xianhui","family":"Lu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zhenfei","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kunpeng","family":"Wang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,5,30]]},"reference":[{"key":"231_CR1","doi-asserted-by":"crossref","unstructured":"Alwen J, Peikert C (2009) Generating shorter bases for hard random lattices. In: STACS. LIPIcs, vol 3, pp 75\u201386","DOI":"10.1007\/s00224-010-9278-3"},{"key":"231_CR2","doi-asserted-by":"crossref","unstructured":"Boyen X (2010) Lattice mixing and vanishing trapdoors: a framework for fully secure short signatures and more. In: Proceedings of the 13th international conference on practice and theory in public key cryptography\u2014PKC\u201910. LNCS 6056, pp 499\u2013517","DOI":"10.1007\/978-3-642-13013-7_29"},{"key":"231_CR3","doi-asserted-by":"crossref","unstructured":"Chen Y, Tang Q, Wang Y (2021) Hierarchical integrated signature and encryption:(or: Key separation vs. key reuse: enjoy the best of both worlds). In: 27th international conference on theory and application of cryptology and information security, ASIACRYPT 2021. Springer Science and Business Media Deutschland GmbH, pp 514\u2013543","DOI":"10.1007\/978-3-030-92075-3_18"},{"key":"231_CR4","doi-asserted-by":"crossref","unstructured":"Courtois NT, Mercer R (2017) Stealth address and key management techniques in blockchain systems. In: Proceedings of the 3rd international conference on information systems security and privacy\u2014volume 1: ICISSP, pp 559\u2013566","DOI":"10.5220\/0006270005590566"},{"key":"231_CR5","doi-asserted-by":"crossref","unstructured":"Cramer R, Shoup V (1998) A practical public key cryptosystem provably secure against adaptive chosen ciphertext attack","DOI":"10.1007\/BFb0055717"},{"key":"231_CR6","doi-asserted-by":"crossref","unstructured":"Degabriele JP, Lehmann A, Paterson KG, Smart NP, Strefler M (2012) On the joint security of encryption and signature in EMV. In: Cryptographers\u2019 track at the RSA conference. Springer, pp 116\u2013135","DOI":"10.1007\/978-3-642-27954-6_8"},{"key":"231_CR7","doi-asserted-by":"crossref","unstructured":"Feng C, Tan L, Xiao H, Yu K, Qi X, Wen Z, Jiang Y (2020) PDKSAP: perfected double-key stealth address protocol without temporary key leakage in blockchain. In: 2020 IEEE\/CIC international conference on communications in China (ICCC Workshops). IEEE, pp 151\u2013155","DOI":"10.1109\/ICCCWorkshops49972.2020.9209929"},{"key":"231_CR8","doi-asserted-by":"crossref","unstructured":"Fuchsbauer G, Plouviez A, Seurin Y (2020) Blind Schnorr signatures and signed ElGamal encryption in the algebraic group model. In: Annual international conference on the theory and applications of cryptographic techniques. Springer, pp 63\u201395","DOI":"10.1007\/978-3-030-45724-2_3"},{"key":"231_CR9","doi-asserted-by":"crossref","unstructured":"Gentry C, Peikert C, Vaikuntanathan V (2008) Trapdoors for hard lattices and new cryptographic constructions. In: Proceedings of the fortieth annual ACM symposium on theory of computing, pp 197\u2013206","DOI":"10.1145\/1374376.1374407"},{"key":"231_CR10","doi-asserted-by":"crossref","unstructured":"Gilad Y, Hemo R, Micali S, Vlachos G, Zeldovich N (2017) Algorand: scaling byzantine agreements for cryptocurrencies. In: Proceedings of the 26th symposium on operating systems principles, pp 51\u201368","DOI":"10.1145\/3132747.3132757"},{"key":"231_CR11","doi-asserted-by":"crossref","unstructured":"Haber S, Pinkas B (2001) Securely combining public-key cryptosystems. In: Proceedings of the 8th ACM conference on computer and communications security, pp 215\u2013224","DOI":"10.1145\/501983.502013"},{"key":"231_CR12","doi-asserted-by":"crossref","unstructured":"Liu Z, Nguyen K, Yang G, Wang H, Wong DS (2019a) A lattice-based linkable ring signature supporting stealth addresses. In: European symposium on research in computer security. Springer, pp 726\u2013746","DOI":"10.1007\/978-3-030-29959-0_35"},{"key":"231_CR13","doi-asserted-by":"crossref","unstructured":"Liu Z, Yang G, Wong DS, Nguyen K, Wang H (2019b) Key-insulated and privacy-preserving signature scheme with publicly derived public key. In: 2019 IEEE European symposium on security and privacy (EuroS &P). IEEE, pp 215\u2013230","DOI":"10.1109\/EuroSP.2019.00025"},{"key":"231_CR14","doi-asserted-by":"crossref","unstructured":"Liu W, Liu Z, Nguyen K, Yang G, Yu Y (2020) A lattice-based key-insulated and privacy-preserving signature scheme with publicly derived public key. In: European symposium on research in computer security. Springer, pp 357\u2013377","DOI":"10.1007\/978-3-030-59013-0_18"},{"key":"231_CR15","doi-asserted-by":"crossref","unstructured":"Lyubashevsky V (2012) Lattice signatures without trapdoors. In: EUROCRYPT. Lecture notes in computer science, vol 7237, pp 738\u2013755","DOI":"10.1007\/978-3-642-29011-4_43"},{"key":"231_CR16","doi-asserted-by":"crossref","unstructured":"Micciancio D, Peikert C (2012) Trapdoors for lattices: simpler, tighter, faster, smaller. In: Advances in cryptology\u2014EUROCRYPT\u201912. LNCS 7237. Springer, pp 700\u2013718","DOI":"10.1007\/978-3-642-29011-4_41"},{"key":"231_CR17","unstructured":"Nakamoto S (2008) Bitcoin: a peer-to-peer electronic cash system. Consulted"},{"key":"231_CR18","unstructured":"Naor M, Reingold O (1997) Number-theoretic constructions of efficient pseudo-random functions. In: 38th Annual symposium on foundations of computer science. Proceedings"},{"key":"231_CR19","doi-asserted-by":"publisher","first-page":"1","DOI":"10.5195\/ledger.2016.34","volume":"1","author":"S Noether","year":"2016","unstructured":"Noether S, Mackenzie A (2016) Ring confidential transactions. Ledger 1:1\u201318","journal-title":"Ledger"},{"key":"231_CR20","doi-asserted-by":"crossref","unstructured":"Paterson KG, Schuldt JC, Stam M, Thomson S (2011) On the joint security of encryption and signature, revisited. In: International conference on the theory and application of cryptology and information security. Springer, pp 161\u2013178","DOI":"10.1007\/978-3-642-25385-0_9"},{"key":"231_CR21","doi-asserted-by":"crossref","unstructured":"Pointcheval D, Stern J (1996) Security proofs for signature schemes. In: EUROCRYPT 96, pp 387\u2013398","DOI":"10.1007\/3-540-68339-9_33"},{"issue":"6","key":"231_CR22","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/1568318.1568324","volume":"56","author":"O Regev","year":"2009","unstructured":"Regev O (2009) On lattices, learning with errors, random linear codes, and cryptography. J ACM (JACM) 56(6):1\u201340","journal-title":"J ACM (JACM)"},{"key":"231_CR23","unstructured":"Saberhagen NV (2012) CryptoNote v 1.0"},{"key":"231_CR24","unstructured":"Saberhagen NV (2013) CryptoNote v 2.0"},{"key":"231_CR25","doi-asserted-by":"crossref","unstructured":"Sasson EB, Chiesa A, Garman C, Green M, Miers I, Tromer E, Virza M (2014) Zerocash: decentralized anonymous payments from bitcoin. In: 2014 IEEE symposium on security and privacy. IEEE, pp 459\u2013474","DOI":"10.1109\/SP.2014.36"},{"key":"231_CR26","doi-asserted-by":"crossref","unstructured":"Tsiounis Y, Yung M (1998) On the security of ElGamal based encryption","DOI":"10.1007\/BFb0054019"},{"key":"231_CR27","first-page":"466","volume":"2008","author":"MIG Vasco","year":"2008","unstructured":"Vasco MIG, Hess F, Steinwandt R (2008) Combined (identity-based) public key schemes. IACR Cryptol. ePrint Arch. 2008:466","journal-title":"IACR Cryptol. ePrint Arch."},{"issue":"3","key":"231_CR28","doi-asserted-by":"publisher","first-page":"491","DOI":"10.3390\/math12030491","volume":"12","author":"X Wang","year":"2024","unstructured":"Wang X, Zhu C, Liu Z (2024) A universally composable linkable ring signature supporting stealth addresses. Mathematics 12(3):491","journal-title":"Mathematics"},{"issue":"2014","key":"231_CR29","first-page":"1","volume":"151","author":"G Wood","year":"2014","unstructured":"Wood G (2014) Ethereum: a secure decentralised generalised transaction ledger. Ethereum Proj Yellow Pap 151(2014):1\u201332","journal-title":"Ethereum Proj Yellow Pap"},{"issue":"2327","key":"231_CR30","first-page":"4662","volume":"21","author":"G Wood","year":"2016","unstructured":"Wood G (2016) Polkadot: vision for a heterogeneous multi-chain framework. White Pap 21(2327):4662","journal-title":"White Pap"},{"key":"231_CR31","unstructured":"Wuille P, Nick J, Ruffing T (2021) BIP 340: Schnorr signatures for secp256k1. https:\/\/github.com\/bitcoin\/bips\/blob\/master\/bip-0340.mediawiki"},{"key":"231_CR32","first-page":"548","volume":"2020","author":"G Yu","year":"2020","unstructured":"Yu G (2020) Blockchain stealth address schemes. IACR Cryptol. ePrint Arch. 2020:548","journal-title":"IACR Cryptol. ePrint Arch."},{"key":"231_CR33","doi-asserted-by":"crossref","unstructured":"Zhu C, Wang X, Liu Z (2023) Universally composable key-insulated and privacy-preserving signature scheme with publicly derived public key. In: Inscrypt\u201923","DOI":"10.1007\/978-981-97-0942-7_3"}],"container-title":["Cybersecurity"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s42400-024-00231-x.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1186\/s42400-024-00231-x\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s42400-024-00231-x.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,5,30]],"date-time":"2024-05-30T05:05:59Z","timestamp":1717045559000},"score":1,"resource":{"primary":{"URL":"https:\/\/cybersecurity.springeropen.com\/articles\/10.1186\/s42400-024-00231-x"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,5,30]]},"references-count":33,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2024,12]]}},"alternative-id":["231"],"URL":"https:\/\/doi.org\/10.1186\/s42400-024-00231-x","relation":{},"ISSN":["2523-3246"],"issn-type":[{"value":"2523-3246","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,5,30]]},"assertion":[{"value":"29 December 2023","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"11 March 2024","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"30 May 2024","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"The authors declare no competing interests.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Competing interests"}}],"article-number":"43"}}