無證書聚合簽名方案的安全性分析和改進

張玉磊; 李臣意; 王彩芬; 張永潔

doi:10.11999/JEIT141635

無證書聚合簽名方案的安全性分析和改進

doi: 10.11999/JEIT141635

1.
(西北師范大學(xué)計算機科學(xué)與工程學(xué)院蘭州 730070) ②(甘肅衛(wèi)生職業(yè)學(xué)院蘭州 730000)

基金項目:

國家自然科學(xué)基金(61163038, 61262056, 61262057)，甘肅省高等學(xué)?？蒲许椖?2013A-014)和西北師范大學(xué)青年教師科研能力提升計劃項目(NWNU-LKQN-12-32)

計量
- 文章訪問數(shù): 1737
- HTML全文瀏覽量: 214
- PDF下載量: 445
- 被引次數(shù): 0
出版歷程
- 收稿日期: 2014-12-25
- 修回日期: 2015-03-23
- 刊出日期: 2015-08-19

Security Analysis and Improvements of Certificateless Aggregate Signature Schemes

1.
(College of Computer Science and Engineering, Northwest Normal University, Lanzhou 730070, China)
2.
(Gansu Health Vocational College, Lanzhou 730000, China)

摘要

摘要: 該文分析了He等人(2014)提出的無證書簽名方案和Ming等人(2014)提出的無證書聚合簽名方案的安全性，指出Ming方案存在密鑰生成中心(KGC)被動攻擊，He方案存在KGC被動攻擊和KGC主動攻擊。該文描述了KGC對兩個方案的攻擊過程，分析了兩個方案存在KGC攻擊的原因，最后對Ming方案提出了兩類改進。改進方案不僅克服了原方案的安全性問題，同時也保持了原方案聚合簽名長度固定的優(yōu)勢。
- 密碼學(xué) /
- 聚合簽名 /
- 無證書簽名 /
- 密鑰生成中心攻擊 /
- 選擇消息攻擊 /
- 計算Diffie-Hellman 困難問題
Abstract: The security of certificateless signature scheme which was proposed by He et al. (2014) is analyzed, and the security of the certificateless aggregate signature scheme which was proposed by Ming et al. (2014) is analyzed too. It is pointed out that the Key Generation Center (KGC) can realize the passive attacks in the Mings scheme. It is also pointed out that KGC can realize the passive attack and initiative attack respectively in the Nimgs scheme. The processes of concrete forgery attacks which perfored by KGC are shown, and the possible reasons are analyzed. Finally, two improved Mings schemes are proposed. The improved schemes not only overcome the security problem of original scheme but also have an advantage that the length of aggregated signature is fixed.
- Cryptography /
- Aggregate signature /
- Certificateless signature /
- Key Generation Center (KGC) attack /
- Chosen message attack /
- Computational Diffie-Hellman Hard problem (CDH)

HTML全文

參考文獻(19)

Alriyami S S and Paterson K G. Certificateless public key cryptography[C]. Proceedings of the Cryptology-Asiacrypt, Taipei, China, 2003: 452-474.

Liu Jing-wei, Zhang Zong-hua, and Chen Xiao-feng. Certificateless remote anonymous authentication schemes for wireless body area networks[J]. IEEE Transactions on Parallel Distributed Systems, 2014, 25(2): 332-342.

光焱, 顧純祥, 祝躍飛, 等. 一種基于LWE問題的無證書全同態(tài)加密體制[J]. 電子與信息學(xué)報, 2013, 35(4): 988-993.

Guang Yan, Gu Chun-xiang, Zhu Yue-fei, et al.. Certificateless fully homomorphic encryption based on LWE problem[J]. Journal of Electronics Information Technology, 2013, 35(4): 988-993.

Zhang Lei, Wu Qian-hong, Josep Domingo-Ferrerc, et al.. Signatures in hierarchical certificateless cryptography: efficient constructions and provable security[J]. Information Sciences, 2014, 272: 223-237.

Boneh D, Gentry C, Lynn B, et al.. Aggregate and verifiably encrypted signatures from bilinear maps[C]. Proceedings of the Cryptology-Eurocrypt, Warsaw, Poland, 2003: 416-432.

Xiong Hu, Guan Zhi, Chen Zhong, et al.. An efficient certificateless aggregate signature with const pairing computations[J]. Information Sciences, 2013, 219: 225-235.

He De-biao, Tian Miao-miao, and Chen Jian-hua. Insecurity of an ef?cient certi?cateless aggregate signature with constant pairing computations [J]. Information Sciences, 2014, 268: 458-462.

明洋, 趙祥模, 王育民. 無證書聚合簽名方案[J]. 電子科技大學(xué)學(xué)報, 2014, 43(2): 188-193.

Ming Yang, Zhao Xiang-mo, and Wang Yu-ming. Certificateless aggregate signature scheme[J]. Journal of University of Electronic Science and Technology of China, 2014, 43(2): 188-193.

Gong Zheng, Long Yu, Hong Xuan, et al.. Two certificateless aggregate signatures from bilinear maps [C]. Proceedings of Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing, Qingdao, China, 2007: 188-193.

Zhang Lei and Zhang Fu-tai. A new certificateless aggregation signature shceme[J]. Computer Communications, 2009, 32(6): 1079-1085.

Au Man-ho, Mu Yi, Chen Jing,et al.. Malicious KGC attack in certificateless cryptography[C]. Proceedings of the ASIACCS2007, New York, USA, 2007: 302-311.

張福泰, 孫銀霞, 張磊, 等. 無證書公鑰密碼體制研究[J]. 軟件學(xué)報, 2011, 22(6): 1316-1332.

Zhang Fu-tai, Sun Yin-xia, Zhang Lei, et al.. Research on certificateless public key cryptography [J]. Journal of Software, 2011, 22(6): 1316-1332.

喻琇瑛, 何大可. 一種新的無證書聚合簽名[J]. 計算機應(yīng)用研究, 2014, 31(8): 2485-2487.

Yu Xiu-ying and He Da-ke. New certificateless aggregate signature scheme [J]. Application Research of Computers, 2014, 31(8): 2485-2487.

侯紅霞,張雪鋒,董曉麗. 改進的無證書聚合簽名方案[J].山東大學(xué)學(xué)報(理學(xué)版), 2013, 48(9): 29-34.

Hou Hong-xia, Zhang Xue-feng, and Dong Xiao-li. Improved certificateless aggregate signature scheme[J]. Journal of Shandong University (Natural Science), 2013, 48(9): 29-34.

相關(guān)文章

施引文獻

資源附件(0)

訪問統(tǒng)計