基于属性的抗合谋攻击可变门限环签名方案

doi:10.11959/j.issn.1000-436x.2015330

通信学报 ›› 2015, Vol. 36 ›› Issue (12): 212-222.doi: 10.11959/j.issn.1000-436x.2015330

• 数据安全 • 上一篇

基于属性的抗合谋攻击可变门限环签名方案

陈桢^1,²,张文芳^1,²,王小敏¹

¹ 西南交通大学信息科学与技术学院，四川成都 610031
² 西南交通大学信息安全与国家计算网格实验室，四川成都 610031

出版日期:2015-12-25 发布日期:2017-07-17
基金资助:
国家自然科学基金资助项目;国家自然科学基金资助项目;中国铁路总公司科技研究开发计划基金资助项目;四川省科技厅应用基础研究基金资助项目;中央高校基本科研业务费专项基金资助项目

Attribute-based alterable threshold ring signature scheme with conspiracy attack immunity

Zhen CHEN^1,²,Wen-fang ZHANG^1,²,Xiao-min WANG¹

¹ School of Information Science and Technology,Southwest Jiaotong University,Chengdu 610031,China
² Key Laboratory of Information Security and National Computing Grid,Southwest Jiaotong University,Chengdu 610031,China

Online:2015-12-25 Published:2017-07-17
Supported by:
The National Natural Science Foundation of China;The National Natural Science Foundation of China;The Major Project for the Science and Technology Development of China Railway Corporation;The Basic Application Research Project of Sichuan Province of China;The Fundamental Research Funds for the Central Universities of China

摘要/Abstract

摘要：

基于属性的密码体制是基于身份密码体制的泛化和发展，它将身份扩展为一系列属性的集合，具有更强的表达性，并且拥有相同属性的成员自动组成一个环，便于隐匿签名者身份。通过对现有的基于属性门限环签名方案的深入分析，发现这些方案虽然满足匿名性要求，但拥有互补属性的恶意用户可以通过合谋伪造出有效签名。为弥补上述缺陷，首先给出基于属性门限环签名的不可伪造性、不可区分性及抗合谋攻击性的形式化定义，然后给出一个基于属性的抗合谋攻击可变门限环签名方案，其安全性可归约为 CDH（computational Diffie-Hellman）困难问题。所提方案通过在用户属性密钥中引入互不相同的秘密随机因子的方法，防止合谋攻击者利用组合私钥的方式伪造签名。在随机预言机模型下，方案被证明能够抵抗适应性选择消息的存在性伪造及合谋攻击，并具有相同签名属性集用户间的不可区分性。与同类方案相比，新方案还具备更高的运算效率。

关键词: 基于属性签名, 可变门限, 合谋攻击, 匿名性, 计算Diffie-Hellman难题

Abstract:

Attribute-based cryptography is a generalization and development of the identity-based cryptography,which extends the identity to a set of attributes.In the attribute-based cryptosystem,different members with the same attributes can form a signature ring automatically,with the actual signer’s personl idnetity easily hided.By in-depth analysis of several attribute-based threshold ring signature schemes proposed by the earlier reseachers,it is concluded that the malicious users with the complementary attributes can conspire to forge a valid signature.In order to compensate for the defect,the proposal first gives the formal definitions of the security characteristics in attribute-based threshold ring signature scheme,such as unforgeability,indistinguishability and anti-collusion attack.Then a new attribute-based alterable threshold ring signature scheme is presented,whose security is proven equivalent to the computational Diffie-Hellman problem.By introducing an random secret parameter in each user’s private key,the proposal can resist the collusion attacks.It is proven that the proposal can satisfy existential unforgeability and anti-collusion against the adaptive chosen message attack in therandom oracle model,and can meet the requirement of indistinguishability among the users with the same attributes.Besides,property analysis shows that the proposal has high efficiency.

陈桢,张文芳,王小敏. 基于属性的抗合谋攻击可变门限环签名方案[J]. 通信学报, 2015, 36(12): 212-222.

Zhen CHEN,Wen-fang ZHANG,Xiao-min WANG. Attribute-based alterable threshold ring signature scheme with conspiracy attack immunity[J]. Journal on Communications, 2015, 36(12): 212-222.

图/表 1

参考文献 12

[13]	RIVEST R L , SHAMIR A , TAUMAN Y . How to leak a secret[A]. Proc of the Asiacrypt 2001[C]. Heidelberg: Springer-Verlag, 2001. 552-565.
[14]	CHAUM D , HEYST E V . Group signatures[A]. Proc of the Eurocrypt 1991[C]. Heidelberg: Springer-Verlag, 1991. 257-265.
[15]	LI J , KIM K . Hidden attribute-based signatures without anonymity revocation[J]. Information Sciences, 2010,180: 1681-1689.
[16]	SHAHANDASHTI S F,SAFAVI-NAINI R . Threshold attribute-based signatures and their application to anonymous credential systems[A]. Proc of the Africacrypt 2009[C]. Heidelberg: Springer-Verlag, 2009. 198-216.
[17]	LI J , AU M H , SUSILO W ,et al. Attribute-based signatures and its applications[A]. Proc of the 5th ACM ASIACCS[C]. 2010. 978-987.
[18]	WANG W Q , CHEN S Z . An Efficient attribute-based ring signature scheme[A]. Proc of the 2009 International Forum on Computer Science-Technology and Applications[C]. 2009. 147-150.
[19]	WANG W Q , CHEN S Z . Attribute-based ring signature scheme with constant-size signature[J]. IET Information Security, 2010,4(2): 104-110.
[20]	TOLUEE R , ASAAR M R , SALMASIZADEH M . Attribute-based ring signatures:security analysis and a new construction[A]. Proc of the 10th ISCISC[C]. 2013. 1-6.
[21]	付小晶, 张国印, 马春光 . 一个改进的动态门限基于属性签名方案[J]. 计算机科学, 2013,40(7): 93-97. FU X J , ZHANG G Y , MA C G . Dynamic threshold attributes-based signature scheme[J]. Computer Science, 2013,40(7): 93-97.
[22]	张秋璞, 徐震, 叶顶峰 . 一个可追踪身份的基于属性签名方案[J]. 软件学报, 2012,23(9): 2449-2464. ZHANG Q P , XU Z , YE D F . Identity traceable attribute-based signa-ture scheme[J]. Journal of Software, 2012,23(9): 2449-2464.
[23]	ESCALA A , HERRANZ J , MORILLO P . Revocable attribute-based signatures with adaptive security in the standard model[A]. Proc of the Africacrypt 2011[C]. Heidelberg: Springer-Verlag, 2011. 224-241.
[24]	陈少真, 王文强, 彭书娟 . 高效的基于属性的环签名方案[J]. 计算机研究与发展, 2010,47(12): 2075-2082. CHEN S Z , WANG W Q , PENG S J . Efficient attribute-based ring signature schemes[J]. Journal of Computer Research and Development, 2010,47(12): 2075-2082.
[1]	SHAMIR A . Identity-based cryptosystems and signatures schemes[A]. Proc of the CRYPTO 1984[C]. Heidelberg: Springer-Verlag, 1985. 47-53.
[2]	SAHAI A , WATERS B . Fuzzy identity-based encryption[A]. Proc of the Eurocrypt 2005[C]. Heidelberg: Springer-Verlag, 2005. 457-473.
[3]	GOYAL V , PANDEY O , et al . Attribute-based encryption for fine-grained access control of encryption data[A]. Proc of the 13th ACM CCS[C]. New York, 2006. 89-98.
[4]	ATTRAPADUNG N , IMAI H . Dual-policy attribute based encryption[A]. Proc of the ACNS’09[C]. Heidelberg: Springer-Verlag, 2009. 168-185.
[5]	李强, 冯登国, 张立武 ,等. 标准模型下增强的基于属性的认证密钥协商协议[J]. 计算机学报, 2013,36(10): 2156-2167. LI Q , FENG D G , ZHANG L W ,et al. Enhanced attribute-based au-thenticated key agreement protocol in the standard model[J]. Chinese Journal of Computers, 2013,36(10): 2156-2167.
[6]	熊金波, 姚志强, 马建峰 ,等. 基于属性加密的组合文档安全自毁方案[J]. 电子学报, 2014,42(2): 366-376. XIONG J B , YAO Z Q , MA J F ,et al. A secure self-destruction scheme for composite documents with attribute based encryption[J]. Acta Electronica Sinica, 2014,42(2): 366-376.
[7]	魏江宏, 刘文芬, 胡学先 . 前向安全的密文策略基于属性加密方案[J]. 通信学报, 2014,35(7): 38-45. WEI J H , LIU W F , HU X X . Forward-secure ciphertext-policy attrib-ute-based encryption scheme[J]. Journal on Communications, 2014,35(7): 38-45.
[8]	YANG P , CAO Z , Dong X . Fuzzy identity based signature with applications to biometric authentication[J]. Compute and Electrical Engineering, 2011,(37): 532-540.
[9]	KHADER D . Attribute based group signatures[EB/OL]. . 2007.
[10]	KHADER D . Attribute based group signature with revocation[EB/OL]. .
[11]	GUO S , ZENG Y . Attribute-based signature scheme[A]. Proc of the ISA 2008[C]. Busan, 2008. 509-511.
[12]	MAJI H , PRABHAKARAN M , ROSULEK M . Attribute-based signatures[A]. Proc of the CT-RSA 2011[C]. Heidelberg: Springer-Verlag, 2011. 376-392.

方案	密钥长度/bit	签名长度/bit	签名计算量	验证计算量
LK-ABRS^[15]	2(\|A\|+d?1)\|G₁\|	3d\|G₁\|	5d T_exp	dT_exp+3d T_bp
Li-ABRS^[17]	2(\|A\|+d?1)\|G₁\|	(\|B\|+d?k+2)\|G₁\|	(4d+2\|B\|?2k+2)T_exp	(\|B\|+d?k+2)T_bp
W-ABRS^[18]	2(\|A\|+d?1)\|G₁\|	2d\|G₁\|	5d T_exp	(d+1)T_exp+2d T_bp
WQ-ABRS^[19]	(\|A\|+d)\|G₁\|	3\|G₁\|	(k+3+\|m\|)T_exp	4T_bp+kT_exp
T-ABRS^[20]	(\|A\|+d+1)\|G₁\|	2\|G₁\|	(k+3+\|m\|)T_exp	3Tbp+(\|m\|+k)T_exp
Fu-ABRS^[21]	2(\|A\|+d?1)\|G₁\|	(\|B\|+d?k+1)\|G₁\|	(4d+2\|B\|?2k+1)T_exp	(\|B\|+d?k+2)T_bp
本文方案	(2\|A\|+2d?1)\|G₁\|	(\|B\|+d?k+2)\|G₁\|	(d+\|B\|?k+3)T_exp	(\|B\|+d?k+2)T_bp+(\|B\|+d?k)T_exp

基于属性的抗合谋攻击可变门限环签名方案

Attribute-based alterable threshold ring signature scheme with conspiracy attack immunity

在线阅读

PDF下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 1

参考文献 12

相关文章 15

Metrics

推荐阅读 0

[1]	王振宇, 郭阳, 李少青, 侯申, 邓丁. 面向轻量级物联网设备的高效匿名身份认证协议设计[J]. 通信学报, 2022, 43(7): 49-61.
[2]	孙磊,赵志远,王建华,朱智强. 云存储环境下支持属性撤销的属性基加密方案[J]. 通信学报, 2019, 40(5): 47-56.
[3]	傅晓彤,陈思,张宁. 基于代理的密码货币支付系统[J]. 通信学报, 2017, 38(7): 199-206.
[4]	王彩芬,刘超,李亚红,牛淑芬,张玉磊. 基于PKI和IBC的双向匿名异构签密方案[J]. 通信学报, 2017, 38(10): 10-17.
[5]	杨小东,杨苗苗,高国娟,李亚楠,鲁小勇,王彩芬. 强不可伪造的基于身份服务器辅助验证签名方案[J]. 通信学报, 2016, 37(6): 49-55.
[6]	张波,孙涛,于代荣. 基于身份的多接收者匿名签密改进方案[J]. 通信学报, 2015, 36(9): 109-118.
[7]	张键红，甄伟娜，邹建成. 新的基于变色龙的车载通信安全与隐私保护[J]. 通信学报, 2014, 35(Z2): 26-195.
[8]	张键红,甄伟娜,邹建成. 新的基于变色龙的车载通信安全与隐私保护[J]. 通信学报, 2014, 35(Z2): 191-195.
[9]	张倩颖，冯登国，赵世军. 基于可信芯片的平台身份证明方案研究[J]. 通信学报, 2014, 35(8): 13-106.
[10]	张倩颖,冯登国,赵世军. 基于可信芯片的平台身份证明方案研究[J]. 通信学报, 2014, 35(8): 94-106.
[11]	庞辽军,高璐,裴庆祺,王育民. 基于身份公平的匿名多接收者签密方案[J]. 通信学报, 2013, 34(8): 161-168.
[12]	庞辽军1,2，高璐2，裴庆祺2，王育民2. 基于身份公平的匿名多接收者签密方案[J]. 通信学报, 2013, 34(8): 21-168.
[13]	张明武,杨波,姚金涛,张文政. 标准模型下身份匿名签名方案分析与设计[J]. 通信学报, 2011, 32(5): 40-46.
[14]	侯惠芳,季新生,刘光强. 异构无线网络中基于标识的匿名认证协议[J]. 通信学报, 2011, 32(5): 153-161.
[15]	刘宏伟,谢维信,喻建平,张鹏. 基于身份的公平不可否认协议[J]. 通信学报, 2009, 30(7): 118-123.