Reply to Comment on `Signature with message recovery´

For original article see ibid., vol. 34, no. 20. p. 1934 (1998). A signature scheme is one in which the signer sends the signature to the receiver who is able to verify the signature without recourse to a third party. It should prevent two types of fraud; the forging of a signature by the receiver (or any third party) and the repudiation of the transmission of a message by the sender, i.e. a referee should be able to resolve the matter equitably, without requiring access to the signer´s secret information. In this sense the proposed scheme does not contradict the `signature´. The author also admits that the property in which the receiver´s secret key is revealed in order to settle any dispute, is not ideal for a signature scheme. So, I would like to accept Mitchell and Yeun´s advice [see ibid., vol. 35, no. 3, p. 217, 1999]. The proposed scheme would more appropriately be called an authenticated encryption scheme