In a two-party signature (2pS) scheme, a client and server, each holding a share of decryption key material, collaborate to compute a signature under some parameters known to both. The RSA version of this scheme, Protocol 2pRSA (78) is proposed in [31].
Protocol 2pRSA should provide Authentication and Replay Protection (G1,2,3).