Abstract: Aiming at the intrinsic problems in revocation group signatures,such as reducing group member's computational costs, shortening the signature length and so on, a novel revocation short group signature scheme without encryption was proposed based on the XDDH, LRSW and SDLP assumptions, and it's security was proven. Member revocation was implemented by encoding the validity time into group signature key. In particular, our scheme does not use standard encryption and relies on re-randomizable signature schemes that hide the signed message so as to preserve the anonymity of signers. Our solution outperforms all prior solutions for member revocation in terms of communication and computational costs for the members. Group public key remains constant, and computational costs of signing and verifying are independent of the revocable number, and the signature is only 1195 bits in size.

Key words: Group signatures, Revocation, Signaturcproof-of-knowledge, INd-CCA2 anonymity, Security proof