Signature control method, non-transitory computer-readable storage medium for storing signature control program, and information processing device

What is claimed is: 1 . A signature control method implemented by a computer, for use in a digital workflow system managing a plurality of electronic documents, each electronic document being signed by a corresponding signer of multiple signers using a digital signature technology, the signature control method comprising: acquiring, by a processor circuit of the computer, a plurality of pieces of document information and a plurality of pieces of signature information, each of the plurality of pieces of signature information including a respective digital signature generated from a corresponding piece of document information of the plurality of pieces of document information, each of the plurality of pieces of document information including a corresponding electronic document selected from among the plurality of electronic documents; generating, by the processor circuit of the computer, aggregated signature information including an aggregated digital signature obtained by aggregating the plurality of pieces of signature information into the aggregated signature information by a modulo operation; acquiring, by the processor circuit of the computer, aggregated public key information generated by aggregating a plurality of pieces of public key information into the aggregated public key information by a modulo operation to ensure that a length of the aggregated public key information is equal to a length of any one of the plurality of pieces of public key information, each of at least some pieces of the plurality of pieces of public key information being associated with a corresponding piece of document information of the plurality of pieces of document information; receiving another public key information that is any one of the plurality pieces of public key information and that is not associated with any piece of document information of the plurality of acquired pieces of document information, wherein the another public key information corresponds to a signer who is temporarily unavailable to generate a digital signature for a corresponding piece of document information that is not included in the plurality of pieces of document information; generating revised aggregated signature information by revising the generated aggregated signature information on a basis of the another public key information, wherein the revising of the aggregated signature information includes generating a correction factor based on: the another public key information and hash values of the plurality of pieces of document information, and multiplying the aggregated signature information by the generated correction factor; and outputting the revised aggregated signature information in association with the aggregated public key information and the plurality of acquired pieces of document information, wherein the aggregated public key information is used to verify validity of the revised aggregated signature information to ensure that the plurality of pieces of document information have not been tampered with. 2 . The signature control method according to claim 1 , the signature control method further comprising: performing the aggregating of the public key information to generate the aggregated public key information on a basis of the public key information. 3 . The signature control method according to claim 1 , wherein the generating of the aggregated signature information includes: obtaining a plurality of hash values corresponding to the plurality of pieces of document information, each of the plurality of hash values being a hash value generated by inputting to a hash function a corresponding piece of document information of the plurality of acquired pieces of document information; and generating the aggregated signature information on a basis of the plurality of hash values corresponding to the plurality of pieces of document information. 4 . The signature control method according to claim 1 , the signature control method further comprising: receiving, in association with the plurality of pieces of document information, the revised aggregated signature information and the aggregated public key information; and verifying validity of the received revised aggregated signature information using the received aggregated public key information to ensure that the plurality of pieces of document information have not been tampered with, wherein the verifying includes: calculating a first value using a part of the revised aggregated signature information; calculating a second value using another part of the revised aggregated signature information, the aggregated public key information, and the plurality of pieces of document information; when the first value matches with the second value, determining that the received revised aggregated signature information is valid; otherwise, determining that the received revised aggregated signature information is not valid. 5 . The signature control method according to claim 2 , wherein each piece of public key information of at least some pieces of the plurality of pieces of public key information is paired with private key information used when generating, among the plurality of pieces of signature information, signature information that corresponds to a corresponding piece of document information of the plurality of acquired pieces of document information. 6 . The signature control method according to claim 1 , wherein the plurality of pieces of document information includes pieces of document information that indicates respective versions of a plurality of versions of a first document. 7 . The signature control method according to claim 6 , wherein the outputting includes outputting, in association with the aggregated signature information, a hash value generated on a basis of a hash chain formed from a seed and a hash value that corresponds to the each version of the first document. 8 . The signature control method according to claim 1 , wherein the generating of the aggregated signature information includes generating the aggregated signature information on a basis of a safe prime and a plurality of hash values, each of the plurality of hash values being a value obtained by inputting, to a hash function, a corresponding piece of document information of the plurality of acquired pieces of document information. 9 . The signature control method according to claim 1 , wherein the generating of the aggregated signature information includes generating the aggregated signature information using a Schnorr signature algorithm. 10 . The signature control method according to claim 1 , wherein the document information, the public key information, and the signature information are associated with each predetermined signer. 11 . A non-transitory computer-readable storage medium storing a signature control program, for use in a digital workflow system managing a plurality of electronic documents, each electronic document being signed by a corresponding signer of multiple signers using a digital signature technology, the signature control program comprising instructions which, when executed by a computer, cause the computer to execute processing comprising: acquiring a plurality of pieces of document information and a plurality of pieces of signature information, each of the plurality of pieces of signature information including a respective digital signature generated from a corresponding piece of document information of the plurality of pieces of document information, each of the plurality of pieces of document information including a corresponding electronic document selected from among the plurality of electronic documents; generating aggregated signature informa