“…Aggregate signature scheme by Boneh et al [4] is a suitable tool for such a situation. Especially, an aggregate signature scheme which verifies both of the validity of the document and the signing order for a group of signers is called ordered sequential aggregate signature scheme [15] and many such schemes have been proposed so far [3], [6], [7], [11], [12], [13], [15], [16], [17], [18], [20], [22], [23], [25], [26]. On the other hand, certificateless public key cryptosystems, which was firstly introduced by Al-Riyami and Paterson [1] in 2003, have come into limelight in recent years.…”