The blind signature protocol used in Section III is vulnerable to the blind attack. It can be easily fixed by letting the network owner sign on the hash h(m) of a token m instead of directly m itself.