## Abstract

We present an efficiency improvement on an existing unlinkable divisible e-cash system. In the based e-cash system, an e-coin can be divided to spent, and thus the exact payments are available. Furthermore, to protect customer's privacy, the system also satisfies the unlinkability in all the payments, which is not satisfied in other existing divisible e-cash systems. The unlinkability means the infeasibility of determining whether two payments are made by the same customer. However, in the unlinkable divisible e-cash system, the payment protocol needs O(N) computations, and thus inefficient, where N indicates the divisibility precision. For example, in case of N = 100,000, about 200,000 exponentiations are needed for the worst. We improve the payment protocol using the tree approach. In case of N = 100,000, the protocol with our improvement needs only about 600 exponentiations for the worst. This good result can be obtained for other N which is more than about 100.

Original language | English |
---|---|

Pages (from-to) | 2326-2335 |

Number of pages | 10 |

Journal | IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences |

Volume | E85-A |

Issue number | 10 |

Publication status | Published - Oct 2002 |

## Keywords

- Divisibility
- Electronic cash system
- Group signature scheme
- Signatures based on zero-knowledge proofs of knowledge
- Unlinkability

## ASJC Scopus subject areas

- Signal Processing
- Computer Graphics and Computer-Aided Design
- Electrical and Electronic Engineering
- Applied Mathematics