无线漫游认证中可证安全的无证书聚合签名方案

doi:10.11959/j.issn.1000-436x.2017152

通信学报 ›› 2017, Vol. 38 ›› Issue (7): 123-130.doi: 10.11959/j.issn.1000-436x.2017152

无线漫游认证中可证安全的无证书聚合签名方案

许芷岩^1,²,吴黎兵¹,李莉³,何德彪^1,⁴

¹ 武汉大学计算机学院，湖北武汉 430072
² 湖北第二师范学院计算机学院，湖北武汉 430205
³ 武汉大学国际软件学院，湖北武汉 430072
⁴ 武汉大学软件工程国家重点实验室，湖北武汉 430072

修回日期:2017-05-11 出版日期:2017-07-01 发布日期:2017-08-25
作者简介:许芷岩（1982-），女，河南周口人，武汉大学博士生，主要研究方向为应用密码学、云存储安全与隐私保护等。|吴黎兵（1972-），男，湖北黄梅人，博士，武汉大学教授、博士生导师，主要研究方向为分布式计算、网络管理等。|李莉（1979-），女，安徽芜湖人，博士，武汉大学副教授、博士生导师，主要研究方向为数据安全、嵌入式安全等。|何德彪（1980-），男，山东阳谷人，博士，武汉大学教授、博士生导师，主要研究方向为应用密码学、安全协议、云计算安全等。
基金资助:
国家自然科学基金资助项目(61501333);国家自然科学基金资助项目(61572379);国家自然科学基金资助项目(61472287);湖北省自然科学基金资助项目(2015CFA068);武汉市科技计划基金资助项目(2016060101010047)

Provably secure certificateless aggregate signature scheme in wireless roaming authentication

Zhi-yan XU^1,²,Li-bing WU¹,Li LI³,De-biao HE^1,⁴

¹ Computer School,Wuhan University,Wuhan 430072,China
² College of Computer,Hubei University of Education,Wuhan 430205,China
³ International School of Software ,Wuhan University,Wuhan 430072,China
⁴ State Key Laboratory of Software Engineering,Wuhan University,Wuhan 430072,China

Revised:2017-05-11 Online:2017-07-01 Published:2017-08-25
Supported by:
The National Natural Science Foundation of China(61501333);The National Natural Science Foundation of China(61572379);The National Natural Science Foundation of China(61472287);The Natural Science Foundation of Hubei Province(2015CFA068);Science and Technology Program of Wuhan(2016060101010047)

摘要/Abstract

摘要：

无证书聚合签名在实现批验证的同时解决了证书管理和密钥托管问题，在资源受限的无线移动网络中得到广泛应用。首先对一个无线匿名漫游认证方案中的无证书聚合签名进行了安全性分析，指出该方案不能抵抗签名伪造攻击，并提出了一种新的安全高效的无证书聚合签名方案。新方案不需要双线性对操作，在随机预言机模型下证明方案是安全的。与原方案相比，所提方案在提高安全性的同时大大降低了计算开销。

关键词: 可证安全, 无证书, 聚合签名, 抗伪造攻击

Abstract:

Certificateless aggregate signature (CLAS) schemes have been widely applied in resource-constrained wireless mobile networks,because they could not only realize batch validation but also solve the certificate management and key escrow problems.It was shown that a certificateless aggregate signature in an anonymous roaming authentication scheme was vulnerable to the signature forge attack.To address the issue,a new secure and efficient certificateless aggregate signature scheme was presented,which required no bilinear pairing operations.And then the security of the scheme under the ECDLP assumption in the random oracle model was proved.Finally the performance of proposed scheme was evaluated.Compared with the original scheme,the proposal is more secure and the total computational cost is greatly reduced .

Key words: provably secure, certificateless, aggregate signature, resist forgery attack

中图分类号:

TP309

许芷岩,吴黎兵,李莉,何德彪. 无线漫游认证中可证安全的无证书聚合签名方案[J]. 通信学报, 2017, 38(7): 123-130.

Zhi-yan XU,Li-bing WU,Li LI,De-biao HE. Provably secure certificateless aggregate signature scheme in wireless roaming authentication[J]. Journal on Communications, 2017, 38(7): 123-130.

图/表 1

表1

计算开销对比"

阶段	Liu-Shi方案^[2]	本文方案
单个签名生成	$T_{mts} + T_{ecc-pa} + T_{ecc-pm}$	$T_{mts} + T_{z-sa} + T_{z-sm}$
单个签名验证	$T_{mts} + 2 T_{mtp} + 3 T_{bp} + T_{ecc-pa} + 2 T_{ecc-pm}$	$3 T_{mts} + 3 T_{ecc-pa} + 4 T_{ecc-pm}$
聚合签名生成	$2 (n - 1) T_{ecc-pa}$	$(n - 1) T_{z-sa}$
聚合签名验证	$n T_{mts} + (n + 1) T_{mtp} + 3 T_{bp} + (2 n - 1) T_{ecc-pa} + 2 n T_{ecc-pm}$	$3 n T_{mts} + (3 n + 1) T_{ecc-pm} + (4 n - 1) T_{ecc-pa}$

表1

参考文献 17

[1]	XIONG H , WU Q , CHEN Z . An efficient provably secure certificateless aggregate signature applicable to mobile computation[J]. Control and Cybernetics, 2012,41(2): 373-391.
[2]	刘丹, 石润华, 张顺 ,等. 无线网络中基于无证书聚合签名的高效匿名漫游认证方案[J]. 通信学报, 2016,37(7): 182-192.
	LU D , SHI R H , ZHANG S ,et al. Efficient anongmons roaming autbenticotion scheme using certificateless aggregate signature in wireless network[J]. Journal on Communications, 2016,37(7): 182-192.
[3]	JIANG Y , LIN C , SHEN X ,et al. Mutual authentication and key exchange protocols for roaming services in wireless mobile networks[J]. IEEE Transactions on Wireless Communications, 2006,5(9): 2569-2577.
[4]	ZHOU T , XU J . Provable secure authentication protocol with anonymity for roaming service in global mobility networks[J]. Computer Networks, 2011,55(1): 205-213.
[5]	REN K , LOU W , KIM K ,et al. A novel privacy preserving authentication and access control scheme for pervasive computing environments[J]. IEEE Transactions on Vehicular Technology, 2006,55(4): 1373-1384.
[6]	KIM J , CHOI S , KIM K ,et al. Anonymous authentication protocol for dynamic groups with power-limited devices[C]// Symposium on Cryptography and Information Security (SCIS’03). 2013: 405-410.
[7]	WAN Z , REN K , PRENEEL B . A secure privacy-preserving roaming protocol based on hierarchical identity-based encryption for mobile networks[C]// The lst ACM Conference on Wireless Network Security. ACM, 2008: 62-67.
[8]	YANG G , HUANG Q , WONG D S ,et al. Universal authentication protocols for anonymous wireless communications[J]. IEEE Transactions on Wireless Communications, 2010,9(1): 168-174.
[9]	Al-RIYAMI S S , PATERSON K G . Certificateless public key cryptography[C]// International Conference on the Theory and Application of Cryptology and Information Security. Springer Berlin Heidelberg, 2003: 452-473.
[10]	YAP W S , HENG S H , GOI B M . An efficient certificateless signature scheme[C]// International Conference on Embedded and Ubiquitous Computing. Springer Berlin Heidelberg, 2006: 322-331.
[11]	LI J , HUANG X , MU Y ,et al. Cryptanalysis and improvement of an efficient certificateless signature scheme[J]. Journal of Communications and Networks, 2008,10(1): 10-17.
[12]	AU M H , MU Y , ChEN J ,et al. Malicious KGC attacks in certificateless cryptography[C]// The 2nd ACM Symposium on Information,Computer and Communications Security. ACM, 2007: 302-311.
[13]	GONG Z , LONG Y , HONG X ,et al. Two certificateless aggregate signatures from bilinear maps[C]// Software Engineering,Artificial Intelligence,Networking,and Parallel/Distributed Computing,2007.SNPD 2007. Eighth ACIS International Conference on IEEE, 2007,3: 188-193.
[14]	ZHANG L , ZHANG F . A new certificateless aggregate signature scheme[J]. Computer Communications, 2009,32(6): 1079-1085.
[15]	HORNG S J , TZENG S F , HUANG P H ,et al. An efficient certificateless aggregate signature with conditional privacy-preserving for vehicular sensor networks[J]. Information Sciences, 2015,317: 48-66.
[16]	LI J , YUAN H , ZHANG Y . Cryptanalysis and improvement of certificateless aggregate signature with conditional privacy-preserving for vehicular sensor networks[J]. Networks, 2015,317: 48-66.
[17]	POINTCHEVAL D , STERN J . Security arguments for digital signatures and blind signatures[J]. Journal of Cryptology, 2000,13(3): 361-396.

无线漫游认证中可证安全的无证书聚合签名方案

Provably secure certificateless aggregate signature scheme in wireless roaming authentication

在线阅读

PDF下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 1

参考文献 17

相关文章 15

Metrics

推荐阅读 0

[1]	王子园, 杜瑞忠. 边缘环境下基于无证书公钥密码的数据完整性审计方案[J]. 通信学报, 2022, 43(7): 62-72.
[2]	王竹, 杨思琦, 李凤华, 耿魁, 彭婷婷, 史梦瑶. 高效可证明安全的无证书有序聚合签名方案[J]. 通信学报, 2022, 43(5): 58-67.
[3]	张文波, 黄文华, 冯景瑜. 基于无证书签密的车联社会网络安全通信机制[J]. 通信学报, 2021, 42(7): 128-136.
[4]	崔琪楣, 赵文静, 顾晓阳, 朱增宝, 朱晓暄, 陶小峰, 倪巍. 面向B5G网络的高效切换认证与安全密钥更新机制[J]. 通信学报, 2021, 42(12): 96-108.
[5]	常相茂, 占俊, 王志伟. 低开销的NB-IoT节点群组身份安全认证协议[J]. 通信学报, 2021, 42(12): 152-162.
[6]	杨小东, 席婉婷, 王嘉琪, 陈艾佳, 王彩芬. 基于签密和区块链的车联网电子证据共享方案[J]. 通信学报, 2021, 42(12): 236-246.
[7]	张顺,范鸿丽,仲红,田苗苗. 无线体域网中高效可撤销的无证书远程匿名认证协议[J]. 通信学报, 2018, 39(4): 100-111.
[8]	于金霞,廉欢欢,汤永利,史梦瑶,赵宗渠. 格上基于口令的三方认证密钥交换协议[J]. 通信学报, 2018, 39(11): 87-97.
[9]	秦艳琳,吴晓平,胡卫. 抗密钥泄露的无证书签密方案[J]. 通信学报, 2017, 38(Z2): 43-50.
[10]	牛淑芬,牛灵,王彩芬,李亚红. 标准模型下可证明安全的无证书广义签密[J]. 通信学报, 2017, 38(4): 35-45.
[11]	宋成,张明月,彭维平,贾宗璞,刘志中,闫玺玺. 基于非线性对的车联网无证书批量匿名认证方案研究[J]. 通信学报, 2017, 38(11): 35-43.
[12]	许芷岩,吴黎兵,李莉,何德彪. 新的无证书广义指定验证者聚合签名方案[J]. 通信学报, 2017, 38(11): 76-83.
[13]	曹进,郑怡清,李晖. WBAN网络中条件隐私保护的远程用户认证方案[J]. 通信学报, 2016, 37(Z1): 63-71.
[14]	苏航,刘建伟,陶芮. 无证书的层次认证密钥协商协议[J]. 通信学报, 2016, 37(7): 161-171.
[15]	刘丹,石润华,张顺,仲红. 无线网络中基于无证书聚合签名的高效匿名漫游认证方案[J]. 通信学报, 2016, 37(7): 182-192.