强安全无证书签名方案的安全性分析和改进

doi:10.3969/j.issn.1000-436x.2014.05.016

通信学报 ›› 2014, Vol. 35 ›› Issue (5): 118-123.doi: 10.3969/j.issn.1000-436x.2014.05.016

强安全无证书签名方案的安全性分析和改进

樊爱宛¹,杨照峰¹,谢丽明²

¹ 平顶山学院软件学院，河南平顶山 467002
² 平顶山学院计算机科学与技术学院，河南平顶山 467002

出版日期:2014-05-25 发布日期:2017-07-24
基金资助:
河南省中青年骨干教师基金资助项目；;河南省科技攻关计划基金资助项目

Security analysis and improvement of strongly secure certificate less signature scheme

Ai-wan FAN¹,Zhao-feng YANG¹,Li-ming XIE²

¹ Software School, Pingdingshan College, Pingdingshan 467002, China
² Computer Science and Technology Department, Pingdingshan College, Pingdingshan 467002, China

Online:2014-05-25 Published:2017-07-24
Supported by:
The Foundation for University Key Teachers of Henan Province;The Science and Technology Project of Henan Province

摘要/Abstract

摘要：

对王亚飞等人提出的强安全性无证书签名方案进行安全性分析，指出其方案难以抵抗不诚实 KGC 下的公钥替换攻击。针对此类问题，采用改变传统无证书算法顺序，以 KGC 公告板形式公开用户公钥，用户可以通过本地保存的私钥和公钥验证公钥的真实性，从而对 KGC 的行为进行约束。安全性分析表明，改进后的方案能够抵抗基于不诚实 KGC安全级别下的公钥替换攻击，而且方案避开了无双线性对和逆运算，效率优于已有方案。

关键词: 无证书签名, 公钥替换攻击, 双线性对, 离散对数问题

Abstract:

By analyzing the security of strongly secure certificateless signature scheme proposed by Wang Yafei et al, the problem that the scheme could not resist public key replacement attack under dishonest KGC was pointed out. Aiming at this problem, the behavior of KGC was restrained by the change of traditional certificateless algorithm sequence KGC bulletin board where user public key make public, and verifiability of facticity of public key through the local private keys and public keys. The analysis of security shows that the improved scheme cannot only resist the public key replace-ment attack based on dishonest KGC, but also be more efficient than the existing schemes for avoiding pairings and in-verse operation.

Key words: certificateless signature, public key replacement attack, bilinear pairing, discrete logarithm problem

樊爱宛,杨照峰,谢丽明. 强安全无证书签名方案的安全性分析和改进[J]. 通信学报, 2014, 35(5): 118-123.

Ai-wan FAN,Zhao-feng YANG,Li-ming XIE. Security analysis and improvement of strongly secure certificate less signature scheme[J]. Journal on Communications, 2014, 35(5): 118-123.

图/表 1

参考文献 16

[1]	AL-RIYAMI S S , PATERSON K G . Certificateless public key cryp-tography[A]. Proc of Asiacrypt 2003[C]. Springer-Verlag, Berlin, 2003.452-473.
[2]	CHOI K Y , PARK J H , HWANG J Y , et al. Efficient certificateless signature schemes[A]. Proc of the ACNS 2007 LNCS 4521[C]. Hei-delberg: Springer-Verlag, 2007. 443-458.
[3]	HARN L , REN J , LIN C L . Design of DL-basedcertificateless digital signatures[J]. Journal of Systems and Software, 2009,82(5): 789-793.
[4]	LIPPOLD G , BOYD C , NIETO J M G . Efficient certificateless KEM in the standard model[A]. roc of the ICISC 2009 LNCS 5984[C]. Heidelberg: Springer-Verlag, 2010. 34-46.
[5]	TSO R , KIM C , YI X . Certificateless message recovery signatures providing girault's level-3 security[J]. Journal of Shanghai Jiaotong University(Science), 2011,16(5): 577-583.
[6]	HUANG X , MU Y , SUSILO W , et al. Certificateless signatures: new schemes and security models[J]. The Computer Journal, 2012,55(4): 457-474.
[7]	HU B , WONG D , ZHANG Z , et al. Key replacement attack against a generic construction of certificateless signature[A]. Proc of the 11th Australasian Conference on Information Security and Privacy[C]. Mel-bourne, Australia, 2006. 235-246.
[8]	YAP W S , HENG S H , GOI B M An efficient certificateless signa-ture scheme[A]. Emerging Directions in Embedded and Ubiqui-ous Computing: EUC 2006, LNCS 4097[C]. Berlin: Springer-Verlag, 2006.322-331.
[9]	LI J G , HUANG X Y , MU Y , et al. Cryptanalysis and improvement of an efficient certificateless signature scheme[J]. Journal of Communi-cations and Networks, 2008,10(1):10-17.
[10]	TIAN M , HUAN L . Cryptanalysis of a certificateless signature sche-mewithout pairings[EB/OL]. , 2012.
[11]	HE D , CHEN J , ZHANG R . An efficient and provably-secure certifi-cateless signature scheme without bilinear pairings[J]. International Journal of Communication Systems, 2012,25(11):1432-1442.
[12]	王亚飞，张睿皙．强安全无对的无证书签名方案[J]．通信学报， 2013,34(2):94-100. WANG Y F , ZHANG R Z . Strongly secure certificateless signature scheme without pairings[J]. Journal on Communications, 2013,34(2):94-100.
[13]	王圣宝，刘文浩，谢琪．无双线性配对的无证书签名方案[J]．通信学报， 2012,33(4):93-98. WANG S B , LIU W H , XIE Q . Certificateless signature scheme with-out bilinear pairings[J]. Journal on Communications, 2012,33(4):93-98.
[14]	HUANG X Y , SUSILO W , MU Y , et al. On the security of certificate-less signature schemes from asiacrypt 2003[A]. Proc of the CANS 2005 LNCS 3810[C]. Heidelberg: Springer-Verlag 2005. 13-25.
[15]	CHEN L , CHENG Z , SMART N P . Identity-based key agreementpro-tocols from pairings[J]. Int J Inf Secur, 2007,6(4): 213-241.
[16]	COURTOI N , KLIMOV A , PATARIN J . Efficient algorithms for solving overdefined systems of multivariate polynomial equations[A]. EUROCRYPT 2000[C]. Berlin, Germany, 2000. 392-407.

相关文章 15

[1]	姜占鹏, 孙铭玮, 黄海, 徐江, 刘志伟, 白瑞, 方舟, 曲家兴. 面向双线性对的 $F_{p^{2}}$ -FIOS模乘算法及其实现架构研究[J]. 通信学报, 2022, 43(2): 100-108.
[2]	徐明,李旭如,刘朝斌,马尧. 基于双重代理密钥的船舶自组网门限签名方案[J]. 通信学报, 2018, 39(7): 166-175.
[3]	宋成,张明月,彭维平,贾宗璞,刘志中,闫玺玺. 基于双线性对的车联网批量匿名认证方案研究[J]. 通信学报, 2017, 38(6): 49-57.
[4]	秦艳琳,吴晓平,胡卫. 高效的无证书多接收者匿名签密方案[J]. 通信学报, 2016, 37(6): 129-136.
[5]	杜红珍,温巧燕. 无证书强指定验证者多重签名[J]. 通信学报, 2016, 37(6): 20-28.
[6]	梁艳,张筱,郑志明. 基于无证书群签名方案的电子现金系统[J]. 通信学报, 2016, 37(5): 184-190.
[7]	王洁,蔡永泉,田有亮. 基于博弈论的门限签名体制分析与构造[J]. 通信学报, 2015, 36(5): 148-155.
[8]	李艳琼,李继国,张亦辰. 标准模型下安全的无证书签名方案[J]. 通信学报, 2015, 36(4): 186-194.
[9]	赵振国. 无证书签密机制的安全性分析与改进[J]. 通信学报, 2015, 36(3): 75-80.
[10]	张玉磊,周冬瑞,李臣意,张永洁,王彩芬. 高效的无证书广义指定验证者聚合签名方案[J]. 通信学报, 2015, 36(2): 48-55.
[11]	张宇，杜瑞颖，陈晶，侯健，周庆，王文武. 对一个基于身份签密方案的分析与改[J]. 通信学报, 2015, 36(11): 174-179.
[12]	杜红珍,温巧燕. 改进的无证书有序多重签名方案[J]. 通信学报, 2015, 36(10): 56-61.
[13]	樊爱宛1，杨照峰1，谢丽明2. 强安全无证书签名方案的安全性分析和改进法[J]. 通信学报, 2014, 35(5): 16-123.
[14]	叶青1,2，杨赟3，郑世慧2，常利伟2，肖达2，杨义先2,4. 公平的多方并发签名方案[J]. 通信学报, 2014, 35(3): 16-149.
[15]	叶青,杨赟,郑世慧,常利伟,肖达,杨义先. 公平的多方并发签名方案[J]. 通信学报, 2014, 35(3): 140-149.

方案	运算量			基于KGC安全级别的安全性
方案	签名阶段	验证阶段	总运算量	可信	消极不诚实	积极不诚实
文献[2]	2P	E+M+P	E+M +3P	安全	安全	安全
文献[12]	1P+I	3P+I	4P+2I	安全	不安全	不安全
文献[13]	1P+2I	3P	4P+2I	不安全	不安全	不安全
改进方案	1P	3P	4P	安全	安全	安全

强安全无证书签名方案的安全性分析和改进

Security analysis and improvement of strongly secure certificate less signature scheme

在线阅读

PDF下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 1

参考文献 16

相关文章 15

Metrics

推荐阅读 0