无证书签密机制的安全性分析与改进

doi:10.11959/j.issn.1000-436x.2015060

通信学报 ›› 2015, Vol. 36 ›› Issue (3): 75-80.doi: 10.11959/j.issn.1000-436x.2015060

无证书签密机制的安全性分析与改进

赵振国

华北水利水电大学水利学院，河南郑州 450045

出版日期:2015-03-25 发布日期:2017-06-21
基金资助:
“十二五”国家科技支撑计划基金资助项目;华北水利水电大学高层次人才引进基金资助项目;河南省教育厅科学技术重点研究基金资助项目

Security analysis and improvement of a certificateless signcryption scheme

Zhen-guo ZHAO

School of Water Conservancy, North China University of Water Resources and Electric Power, Zhengzhou 450045, China

Online:2015-03-25 Published:2017-06-21
Supported by:
The “Twelfth 5-year-plan” Support Plan Projects;The Introduction of High-Level Talents Foundation of North China University of Water Resources and Electric Power;The Key Technique Program of the Education Department of Henan Province

摘要/Abstract

摘要：

为了解决传统公钥密码体制中的证书管理问题和身份基公钥密码体制中的密钥托管问题，Al-Riyami 和Paterson 提出了无证书公钥密码体制。最近朱辉等提出了一个不含双线性对运算的无证书签密机制。然而，通过对其进行分析，发现该机制是不安全的（即不能提供保密性和不可伪造性），并给出了具体的攻击方法。为了增强安全性，提出了一个更安全的无证书签密机制，并在随机预言模型下基于离散对数问题和计算性Diffie-Hellman问题给出了安全性证明。此外，新机制具有良好的性能，签密算法只需要4个模幂运算，解密验证算法只需要5个模幂运算。

关键词: 签密, 无证书, 随机预言模型, 双线性对

Abstract:

To solve the certificate management problem in the traditional public key cryptography and the key escrow problem in the identity-based public key cryptography, Al-Riyami and Paterson proposed the concept of the certificateless public key cryptography.Recently,Zhu et al.proposed a certificateless signcryption without bilinear pairings.However， their scheme was completely insecure against with two concrete attacks. A strongly secure certificateless signcryption without bilinear pairings was also proposed, which was provably secure in the random oracle model under the assumption that the discrete logarithm problem and the computational Diffie-Hellman problems were intractable. Furthermore, the efficiency of the proposed scheme is very high since only four modular exponentiations and five modular exponentiations are needed in the signcryption algoriahm and unsigncryption algorithm separately.

Key words: signcryption, certificateless, random oracle model, bilinear pairing

赵振国. 无证书签密机制的安全性分析与改进[J]. 通信学报, 2015, 36(3): 75-80.

Zhen-guo ZHAO. Security analysis and improvement of a certificateless signcryption scheme[J]. Journal on Communications, 2015, 36(3): 75-80.

图/表 2

参考文献 14

[1]	SHAMIRR A . Identity-based cryptosystem and signature scheme[A]. Cryptology-Crypto 1984[C]. Berlin: Springer-Verlag, 1984.47-53.
[2]	AL-RIYAMI S , PATERSON K . Certificateless public key cryptography[A]. Cryptology-Asiacrypt 2003[C]. Berlin: Springer-Verlag, 2003.452-473.
[3]	BARBOSA M , FARSHIM P . Certificateless signcryption[A]. Proc of the ACM Symp on Information. Computer and Communications Security (ASIACCS 2008)[C]. 2008.369-372.
[4]	ARANHA D , CASTROO R , LOPEZ J , et al. Efficient certificateless signcryption[EB/OL]. .
[5]	WU C , CHEN Z . A new efficient certificateless signcryption scheme[A]. Proc of the ISISE 2008[C]. Beijing, China, 2008.661-664.
[6]	SHARMILA D , VIVEK S , PANDU R . On the security of certificate-less signcryption schemes[EB/OL]. .
[8]	WENG J , YAO G , DDENG R . Cryptanalysis of a certificateless sign-cryption scheme in the standard model[J]. Information Sciences, 2011,181(3):661-667.
[9]	ZHOU C , ZHOU W , DONG X . Provable certificateless generalized signcryption scheme[J]. Designs Codes and Cryptography, 2012,71(2):1-16.
[10]	CHEN L , CHENG Z , SMART N . Identity-based key agreement pro-tocols from pairings[J]. Internal Journal of Information Security, 2007,6(4):213-241.
[11]	HE H , CHEN J , HU J . An ID-based proxy signature schemes without bilinear pairings[J]. Annals of Telecommunications, 2011,66(11-12):657-662.
[12]	朱辉，李晖，王育民．不使用双线性对的无证书签密机制方案[J]. 计算机研究与发展， 2010,47(9):1587-1594. ZHU H , LI H , WANG Y M . Certificateless signcryption scheme with-out pairing[J]. Journal of Computer Research and Development, 2010,47(9):1587-1594.
[13]	POINTCHEVAL D , STERN J . Security arguments for digital signatures and blind signatures[J]. Journal of Cryptology, 2000,13(3):361-396.
[7]	LIU Z , HU Y , ZHANG X , MA H . Certificateless signcryption scheme in the standard model[J]. Information Sciences, 2010,180(1):452-464.
[14]	CAO X , KOU W , DU X . A pairing-free identity-based authenticated key agreement protocol with minimal message exchanges[J]. Information Sciences, 2010,180(15):2895-2903.

相关文章 15

[1]	王子园, 杜瑞忠. 边缘环境下基于无证书公钥密码的数据完整性审计方案[J]. 通信学报, 2022, 43(7): 62-72.
[2]	王竹, 杨思琦, 李凤华, 耿魁, 彭婷婷, 史梦瑶. 高效可证明安全的无证书有序聚合签名方案[J]. 通信学报, 2022, 43(5): 58-67.
[3]	姜占鹏, 孙铭玮, 黄海, 徐江, 刘志伟, 白瑞, 方舟, 曲家兴. 面向双线性对的 $F_{p^{2}}$ -FIOS模乘算法及其实现架构研究[J]. 通信学报, 2022, 43(2): 100-108.
[4]	张文波, 黄文华, 冯景瑜. 基于无证书签密的车联社会网络安全通信机制[J]. 通信学报, 2021, 42(7): 128-136.
[5]	崔琪楣, 赵文静, 顾晓阳, 朱增宝, 朱晓暄, 陶小峰, 倪巍. 面向B5G网络的高效切换认证与安全密钥更新机制[J]. 通信学报, 2021, 42(12): 96-108.
[6]	杨小东, 席婉婷, 王嘉琪, 陈艾佳, 王彩芬. 基于签密和区块链的车联网电子证据共享方案[J]. 通信学报, 2021, 42(12): 236-246.
[7]	刘镇,韩益亮,杨晓元,柳曙光. 基于RLWE的可证明安全无陷门签密方案[J]. 通信学报, 2020, 41(6): 14-25.
[8]	彭长根, 张小玉, 丁红发, 杨善慧. 基于Cocks身份密码体制的高效签密方案[J]. 通信学报, 2020, 41(12): 128-138.
[9]	韩益亮,王众. 基于编码的多接收方广义签密方案[J]. 通信学报, 2020, 41(1): 53-65.
[10]	徐明,李旭如,刘朝斌,马尧. 基于双重代理密钥的船舶自组网门限签名方案[J]. 通信学报, 2018, 39(7): 166-175.
[11]	张顺,范鸿丽,仲红,田苗苗. 无线体域网中高效可撤销的无证书远程匿名认证协议[J]. 通信学报, 2018, 39(4): 100-111.
[12]	秦艳琳,吴晓平,胡卫. 抗密钥泄露的无证书签密方案[J]. 通信学报, 2017, 38(Z2): 43-50.
[13]	李晓伟,杨邓奇,陈本辉,张玉清. 基于生物特征和口令的双因子认证与密钥协商协议[J]. 通信学报, 2017, 38(7): 89-95.
[14]	许芷岩,吴黎兵,李莉,何德彪. 无线漫游认证中可证安全的无证书聚合签名方案[J]. 通信学报, 2017, 38(7): 123-130.
[15]	宋成,张明月,彭维平,贾宗璞,刘志中,闫玺玺. 基于双线性对的车联网批量匿名认证方案研究[J]. 通信学报, 2017, 38(6): 49-57.

Pair	SM_Pair	ME
20.01 ms	6.38 ms	11.20 ms

方法	签密运算	解密验证运算
文献[9]	1 SM_Pair+5 SM+	4 SM_Pair+1 SM+
	1 ME ≈63.11 ms	3 ME ≈120.02 ms
文献[12]	3 ME ≈33.60 ms	4 ME ≈44.80 ms
本文	4 ME ≈44.80 ms	5 ME ≈56.00 ms

无证书签密机制的安全性分析与改进

Security analysis and improvement of a certificateless signcryption scheme

在线阅读

PDF下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 2

参考文献 14

相关文章 15

Metrics

推荐阅读 0