群签名中成员撤销问题解决方案

doi:10.3969/j.issn.1000-436x.2014.03.022

通信学报 ›› 2014, Vol. 35 ›› Issue (3): 193-200.doi: 10.3969/j.issn.1000-436x.2014.03.022

群签名中成员撤销问题解决方案

张德栋¹,马兆丰²,杨义先²,钮心忻²

¹ 中国铁道科学研究院电子计算技术研究所，北京 100081
² 北京邮电大学信息安全中心，北京100876

出版日期:2014-03-25 发布日期:2017-08-17
基金资助:
国家自然科学基金资助项目;国家自然科学基金资助项目;国家自然科学基金资助项目

New solution scheme for the member revocation in group signature

De-dong ZHANG¹,Zhao-feng MA²,Yi-xian YANG²,Xin-xin NIU²

¹ Institute of Computing Technology,China Academy of Railway Sciences,Beijing 100081,China
² Information Security Center,Beijing University of Posts and Telecommunications,Beijing 100876,China

Online:2014-03-25 Published:2017-08-17
Supported by:
The National Natural Science Foundation of China;The National Natural Science Foundation of China;The National Natural Science Foundation of China

摘要/Abstract

摘要：

针对Camenisch-Stadler群签名方案中无法撤销成员的问题，提出了一种有效的群成员撤销方案，该方案可以灵活地增加和撤销群成员。当成员加入时，群主管向其颁发成员证书，其他成员无需更新成员密钥和证书；当成员撤销时，群主管只需将撤销成员的匿名身份更新到撤销列表中，无需更新群密钥和其他成员证书，且签名长度与验证工作量均独立于群成员和已撤销成员的个数。因此，新方案适用于群成员数较多和成员更新比较频繁的群签名。

关键词: 群签名, 成员撤销, 离散对数, 知识证明

Abstract:

In order to solve the problem that Camenisch-Stadler's group signature scheme could not revoke members,a new revocation scheme based on the Camenisch-Stadler's group scheme was proposed,allowing the group manager to add new members or revoke old members flexibly and freely.When a member joins the group,the group manager issues member certificate to him (her),and other members need not update the key and certificate; when a member is revoked,the group manager only adds the anonymous identity to revocation list,and other members need not update the key and certificate either.Furthermore,the length of the signature and the computational effort are independent of the number of the group members and the revoked members,so the new scheme is more suitable for large group and the group with members' heavy updates.

Key words: group signature, member revocation, discrete logarithm, knowledge proof

张德栋,马兆丰,杨义先,钮心忻. 群签名中成员撤销问题解决方案[J]. 通信学报, 2014, 35(3): 193-200.

De-dong ZHANG,Zhao-feng MA,Yi-xian YANG,Xin-xin NIU. New solution scheme for the member revocation in group signature[J]. Journal on Communications, 2014, 35(3): 193-200.

图/表 3

参考文献 18

[1]	CHAUM D , VAN H E . Group signatures[A]. Cryptology-EUROCRYPT'91:Workshop on the Theory and Application of Cryptographic Techniques[C]. Brighton,UK, 1991. 257-265.
[2]	CHEN L , PEDERSEN T . On the efficiency of group signatures providing information-theoretic anonymity[A]. Cryptology-EUROCRYPT'95:International Conference on the Theory and Application of Cryptographic Techniques[C]. Saint-Malo,France, 1995. 39-49.
[3]	CAMENISCH J . Efficient and generalized group signatures[A]. Cryptology-EUROCRYPT'97:International Conference on the Theory and Application of Cryptographic Techniques[C]. Konstanz,Germany, 1997. 465-479.
[4]	CAMENISCH J , STADLER M . Efficient group signatures schemes for large groups[A]. Cryptology-CRYPTO'97:17th Annual International Cryptology Conference[C]. California USA, 1997. 410-424.
[5]	BRESSON E , STERN J . Efficient revocation in group signatures[A]. 4th International Workshop on Practice and Theory in Public Key Cryptography[C]. Cheju Island,Korea, 2001. 190-206.
[6]	王尚平，王育民，王晓峰等．群签名中成员删除问题的更新算子解决方案[J]．软件学报， 2003,14(11):1911-1917. WANG S P , WANG Y M , WANG X F , et al. A new solution scheme for the member deletion problem in group signature by use of renew operator[J]. Journal of Software, 2003,14(11):1911-1917.
[7]	黄振杰，林宣治．一个群签名成员删除方案的密码学分析[J]．软件学报， 2005,16(3):472-476. HUANG Z J , LIN X Z . Cryptanalysis of a member deletion scheme for group signature[J]. Journal of Software, 2005,16(3):472-476.
[8]	李新社，胡予濮．一个群签名成员删除方案的分析与改进[J]．西安电子科技大学学报， 2008,35(3):478-482. LI X S , HU Y P . Analysis and improvement of the group signature member deletion scheme[J]. Journal of Xidian University, 2008,35(3):478-482.
[9]	魏凌波，武传坤，周苏静．具有向后无关性的本地验证撤销群签名方案[J]．计算机研究与发展， 2008,45(8):1315-1321. WEI L B , WU C K , ZHOU S J . A new verifier-local revocation group signature with backward unlinkability[J]. Journal of Computer Research and Development, 2008,45(8):1315-1321.
[10]	, , , et al. . , ,(): -.
[]	, , , et al. . , ,(): -.
[12]	LIBERT B , PETERS T , YUNG M . Scalable group signatures with revocation[A]. Eurocrypt'12[C]. Cambridge,UK, 2012. 609-627.
[13]	NAKANISHI T , FUJII H , HIRA Y , et al. Revocable group signature schemes with constant costs for signing and verifying[A]. Public Key Cryptography-PKC 2009:12th International Conference on Practice and Theory in Public Key Cryptography[C]. Irvine,USA, 2009. 463-480.
[14]	伍前红，张键红，王育民．简单证明一个承诺值在特定区间内[J]. 电子学报， 2004,32(7):1071-1073. WU Q H , ZHANG J H , WANG Y M . Simple proof that a committed number is in a specific interval[J]. Acta Electronica Sinica, 2004,32(7):1071-1073.
[15]	SUN Y , XU C , YU Y , et al. Strongly unforgeable proxy signature scheme secure in the stand and model[J]. The Journal of System and Software, 2011,84(9): 1471-1479.
[16]	FUJISAKI E , OKAMOTO T . Statistical zero knowledge protocols to prove modular polynomial relations[A]. Cryptology-CRYPTO'97:17th Annual International Cryptology Conference[C]. California USA, 1997. 16-30.
[17]	BOUDOT F . Efficient proofs that a committed number lies in an interval[A]. Proceedings of EUROCRYPT'2000[C]. Berlin: Spring-Verlag, 2000. 431-444.
[18]	CHAUM D , EVERTSE J H , GRAAF J . An improved protocol for demonstrating possession of discrete logarithm and some generalizations[A]. Proceedings of EUROCRYPT'87[C]. Berlin: Spring-Verlag, 1988. 127-141.

方案名称	成员注册	成员撤销	签名	验证
E.Bresson^[5]	0	0	(3m₂+2)E+2m₂I+m₂ X	2m₂E+m₂I+2m₂ X
李新社^[8]	(m₁+3)E+3I+(2m₁+2)X	(m₁+1)E+I+(2m₁+2)X	3E+3X	E+2X
本方案	2H+2E+3X	E+2X	5H+42E+15M	6H+35E+6M

方案名称	群主管	签名成员	其他成员	验证者
E.Bresson^[5]	O (1)	(3m₂+2)E+2m₂I+m₂ X	0	2m₂E+m₂I+2m₂ X
李新社^[8]	2E+2I+(2m₁+4)X	2E+4X	(2E+4X)m₁	E+2X
本方案	2H+3E+3X	5H+42E+15M	0	6H+35E+6M

方案名称	群公钥长度	群公开特性钥长度	撤销列表长度	签名长度
E.Bresson^[5]	O (1)	—	O(m₂)	O(m₂)
李新社^[8]	O (1)	O(m₁)	—	O (1)
本方案	O (1)	—	O(m₂)	O (1)

[1]	冯霞, 崔凯平, 谢晴晴, 王良民. VANET中基于区块链的分布式匿名认证方案[J]. 通信学报, 2022, 43(9): 134-147.
[2]	张学旺, 黎志鸿, 林金朝. 基于公平盲签名和分级加密的联盟链隐私保护方案[J]. 通信学报, 2022, 43(8): 131-141.
[3]	王后珍, 蔡鑫伟, 郭岩, 张焕国. 基于矩阵填充问题的五轮零知识身份认证方案[J]. 通信学报, 2021, 42(11): 79-86.
[4]	曹进,郑怡清,李晖. WBAN网络中条件隐私保护的远程用户认证方案[J]. 通信学报, 2016, 37(Z1): 63-71.
[5]	秦艳琳,吴晓平,胡卫. 高效的无证书多接收者匿名签密方案[J]. 通信学报, 2016, 37(6): 129-136.
[6]	梁艳,张筱,郑志明. 基于无证书群签名方案的电子现金系统[J]. 通信学报, 2016, 37(5): 184-190.
[7]	仲红,黄丛林,许艳,崔杰. 高效的可撤销群签名方案[J]. 通信学报, 2016, 37(10): 18-24.
[8]	樊爱宛,杨照峰,谢丽明. 强安全无证书签名方案的安全性分析和改进[J]. 通信学报, 2014, 35(5): 118-123.
[9]	樊爱宛1，杨照峰1，谢丽明2. 强安全无证书签名方案的安全性分析和改进法[J]. 通信学报, 2014, 35(5): 16-123.
[10]	张德栋1，马兆丰2，杨义先2，钮心忻2. 群签名中成员撤销问题解决方案[J]. 通信学报, 2014, 35(3): 22-200.
[11]	李晋国1,2，林亚平1,2，李睿1,2，周四望1,2. 车载自组织网络中基于椭圆曲线零知识证明的匿名安全认证机制[J]. 通信学报, 2013, 34(5): 6-61.
[12]	王亚飞,张睿哲. 强安全无对的无证书签名方案[J]. 通信学报, 2013, 34(2): 94-99.
[13]	李龙海,付少锋,黄诚强. 基于DC-net的会议室电子选举方案[J]. 通信学报, 2012, 33(Z1): 103-109.
[14]	柳欣,徐秋亮. 不可克隆的动态k次匿名认证方案[J]. 通信学报, 2012, 33(7): 75-89.
[15]	王圣宝,刘文浩,谢琪. 无双线性配对的无证书签名方案[J]. 通信学报, 2012, 33(4): 93-98.

群签名中成员撤销问题解决方案

New solution scheme for the member revocation in group signature

在线阅读

PDF下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 3

参考文献 18

相关文章 15

Metrics

推荐阅读 0