Anonymous signature scheme

What is claimed is: 1 . A method performed under control of an end device, comprising: receiving public parameters from a central system; generating an enciphering function based at least in part on the received public parameters; calculating signature parameters based at least in part on the generated enciphering function; and transmitting, to a verifying device, a signature that includes a message, a key corresponding to the end device, and the calculated signature parameters. 2 . The method of claim 1 , further comprising: receiving a system parameter from the central system, wherein the generating of the enciphering function is further based on the system parameter. 3 . The method of claim 1 , further comprising: transmitting the generated enciphering function to the central system. 4 . The method of claim 1 , further comprising: generating a deciphering function corresponding to the end device; deciphering the message; and transmitting, to the verifying device, the deciphered message. 5 . The method of claim 4 , further comprising: hashing the deciphered message, wherein the key is obtained based at least in part on the hashing. 6 . The method of claim 4 , further comprising: enciphering signature parameters for at least two end devices; deciphering the enciphered signature parameters for the at least two end devices; and transmitting, to the verifying device, the signature that includes the message, keys corresponding to the at least two end devices, and the deciphered enciphered signature parameters for the at least two end devices. 7 . A method performed under control of a verifying device, comprising: receiving at least one enciphering function from a central system; receiving, from an end device, a signature that includes a message, a key of the end device and signature parameters; enciphering the signature parameters; hashing the message; comparing the enciphered signature parameters and the hashed message; and determining that the signature is valid based at least in part on a result of the comparison. 8 . The method of claim 7 , further comprising: receiving enciphering functions of at least two end devices from the central system; enciphering signature parameters for the at least two end devices; summing results of the enciphering for the at least two end devices; comparing the summed enciphering results to the hashed message; and determining that the at least two signatures are valid based at least in part on a result of the comparison. 9 . The method of claim 7 , further comprising: receiving, from the end device, a deciphered version of the message; enciphering the deciphered message; determining that a result of the enciphering of the deciphered message is the same as the message; and determining that the end device generated the signature. 10 . The method of claim 9 , further comprising: hashing the deciphered version of the message; determining whether the hashed deciphered message is the same as the key corresponding to the end device; and determining that the end device generated the signature, if the hashed deciphered message is the same as the key corresponding to the end device. 11 . The method of claim 10 , further comprising: determining that the signature is not generated by the end device, if the hashed deciphered message is different than the key corresponding to the end device. 12 . An end device, comprising: a receiving unit configured to receive public parameters from a central system; a function managing unit configured to generate an enciphering function based at least in part on the received public parameters; a processor configured to calculate signature parameters based at least in part on the generated enciphering function; and a transmitter configured to transmit, to a verifying device, a signature that includes a message, a key of the end device, and the calculated signature parameters. 13 . The end device of claim 12 , wherein the receiving unit is further configured to receive a system parameter from the central system, and wherein the function managing unit is configured to generate the enciphering function further based on the system parameter. 14 . The end device of claim 12 , wherein the transmitting unit is further configured to transmit the generated enciphering function to the central system. 15 . The end device of claim 12 , wherein the function managing unit is further configured to generate a deciphering function of the end device, wherein the processor is further configured to decipher the message, wherein the transmitter is further configured to transmit, to the verifying device, the deciphered message. 16 . The end device of claim 15 , wherein the processor is further configured to hash the deciphered message, wherein the key is obtained based at least in part on the hashed deciphered message. 17 . The end device of claim 15 , wherein the processor is further configured to encipher signature parameters for at least two end devices, wherein the processor is further configured to decipher the enciphered signature parameters for the at least two end devices, wherein the transmitter is further configured to transmit, to the verifying device, the signature that includes the message, keys corresponding to the at least two end devices and the deciphered enciphered signature parameters for the at least two end devices. 18 . A verifying device, comprising: a receiving unit configured to: receive at least one enciphering function from a central system, and receive, from an end device, a signature that includes a message, a key of the end device, and signature parameters; a processor configured to: encipher the signature parameters, and hash the message; and a determining unit configured to: compare the enciphered signature parameters to the hashed message, and determine that the signature is valid based at least in part on a result of the comparison. 19 . The verifying device of claim 18 , wherein the receiving unit is further configured to receive enciphering functions of at least two end devices from the central system, wherein the processor is further configured to: encipher signature parameters for at least two end devices, and sum the enciphered signature parameters, wherein the determining unit is further configured to: compare the summed results to the hashed message, and determine that the at least two signatures are valid based at least in part on a result of the comparison. 20 . The verifying device of claim 18 , wherein the receiving unit is further configured to receive, from the end device, a deciphered message, wherein the processor is further configured to encipher the deciphered message, wherein the determining unit is further configured to: determine that the enciphered deciphered message is the same as the message, and determine that the end device generates the signature. 21 . The verifying device of claim 20 , wherein the processor is further configured to hash the deciphered message, wherein the determining unit is further configured to: determine whether the hashed deciphered message is the same as the key corresponding to the end device, and determine that the end device generates the signature, if the hashed deciphered message is the same as the key corresponding to the end device. 22 . The verifying device of claim 21 , wherein the dete