中文摘要：

广义指定验证者签名（UDVS）可以实现任意的签名持有者能向任意的验证者证明签名者确实签署了该签名，而且验证者没有能力向第三方证明该签名是有效的。这种签名方案可以保护签名持有者的隐私信息，因而在证书系统中有着重要的应用。然而，UDVS需要签名持有者（designator）与指定的验证者（designated—verifier）通过签名者（signer）的公钥体系来生成自己的密钥对，这在现实情况下是不合理的。最近，Baek等人（2005）在亚洲密码会提出UDVSP（Universal Designated Verifier Signature Proof）来解决这个问题。该文首先指出Baek等人所给出的UDVSP协议存在一个安全性缺陷，即不满足UDVS系统中的不可传递性non—transferability），然后提出一种新的UDVSP协议，并证明该方案满足所定义的安全属性。

英文摘要：

The notion of Universal Designated Verifier Signature （UDVS） allows any holder of a signature to convince any designated verifier that the signer indeed generated the signature without revealing the signature itself, while the verifier can not transfer the proof to convince anyone else of this fact. Such signature schemes can protect the privacy of signature holders and have applications to certification systems. However, they require the designated verifier to create a public key using the signer＇s public key parameter and have it certified to ensure the resulting public key is compatible with the setting that the signer provided. This is unrealistic in some situations. Very recently, Baek et al introduced the concept of Universal Designated Verifier Signature Proof （UDVSP） to solve this problem in Asiacrypt 2005. In this paper, it is first showed that there exits a security flaw in this UDVSP, i.e., it does not satisfy the non-transferability. A new secure UDVSP system is proposed and the system is proved to achieve the desired security notions.