The provable security of one-time signature based broadcast authentication protocols was investigated.In the UC framework,a one-time signature based broadcast authentication model was proposed.Firstly,the one-time signature ideal functionality F OTSand the broadcast authentication ideal functionality F BAUTHwere formally defined in the model.Then,one-time signature protocol HORS+was proposed.At the same time,a broadcast authentication scheme p BAUTHwas designed in the (FOTS,F REG)-hybrid model.Finally,based on the scheme p BAUTH,a new broadcast authentication protocol was then obtained by the combined use of HORS+.The result shows that HORS+securely realizes the ideal functionality FOTS,and p BAUTHalso realizes the ideal functionality F BAUTH.According to the composition theorem in the UC framework,the composed broadcast authentication protocol is UC secure and can be applied to broadcast the authenticated message in the resource-limited networks.