高效可证明安全的无证书有序聚合签名方案

doi:10.11959/j.issn.1000-436x.2022073

通信学报 ›› 2022, Vol. 43 ›› Issue (5): 58-67.doi: 10.11959/j.issn.1000-436x.2022073

高效可证明安全的无证书有序聚合签名方案

王竹¹^,², 杨思琦¹^,², 李凤华¹^,², 耿魁¹, 彭婷婷¹^,², 史梦瑶¹^,²

¹ 中国科学院信息工程研究所，北京 100093
² 中国科学院大学网络空间安全学院，北京 100049

修回日期:2022-03-13 出版日期:2022-05-25 发布日期:2022-05-01
作者简介:王竹（1972- ），女，山西太原人，博士，中国科学院信息工程研究所研究员，主要研究方向为密码理论与技术
杨思琦（1997- ），女，四川绵阳人，中国科学院信息工程研究所硕士生，主要研究方向为信息安全、安全协议
李凤华（1966- ），男，湖北浠水人，博士，中国科学院信息工程研究所研究员、博士生导师，主要研究方向为网络与系统安全、大数据安全与隐私保护、密码工程
耿魁（1989- ），男，湖北红安人，博士，中国科学院信息工程研究所高级工程师、硕士生导师，主要研究方向为网络安全、信息保护
彭婷婷（1998- ），女，河南信阳人，中国科学院信息工程研究所博士生，主要研究方向为信息安全
史梦瑶（1998- ），女，河南许昌人，中国科学院信息工程研究所硕士生，主要研究方向为安全协议理论与设计
基金资助:
国家重点研发计划基金资助项目(2018YFB0803903)

Efficient and provably-secure certificateless sequential aggregate signature scheme

Zhu WANG¹^,², Siqi YANG¹^,², Fenghua LI¹^,², Kui GENG¹, Tingting PENG¹^,², Mengyao SHI¹^,²

¹ Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China
² School of Cyber Security, University of Chinese Academy of Sciences, Beijing 100049, China

Revised:2022-03-13 Online:2022-05-25 Published:2022-05-01
Supported by:
The National Key Research and Development Program of China(2018YFB0803903)

摘要/Abstract

摘要：

针对目前的方案多采用后一个签名者对前一个签名者的签名进行验证后，再将签名传递给下一个签名者，导致整体签名时间过长的效率问题，基于双线性对构造了一种无证书有序聚合签名方案。多个用户按照一定的顺序对文件进行签名和认证生成聚合签名，验证者只需验证最终一个签名就可以确认签名顺序的正确性以及多个用户签名的合法性。所提方案有效降低了验证多用户顺序签名的复杂性，实现了当用户处于离线状态或者处于节点缓存能力与网络资源受限的容迟网络时，对签名合法性的离线验证。在随机预言机模型下，仿真实验证明了所提方案在敌手适应性选择消息下是存在性不可伪造的。

关键词: 无证书公钥密码, 有序聚合签名, 双线性映射, 随机预言机

Abstract:

Aiming at the problem that current schemes mostly let the latter signer to verify the multiple signatures of the previous signer, and the message is signed and then passed to the next signer, leading to the efficiency problem of long overall signature time.A sequential aggregate signature scheme based on bilinear pairs was proposed.The aggregate signatures of documents were generated by multiple users in a certain order, and only the final signature was needed to be verified to confirm the correct order of signatures and the legitimacy of multiple user signatures.The complexity of verifying the multi-user sequential signature was effectively reduced and the offline verification of the authenticity of signature was realized when the user was offline or in a delay-tolerant network with limited node caching capacity and network resources.It is shown that the proposed scheme is existential unforgeability against chosen-message attacks under adversary adaptive selection messages in the random oracle model.

Key words: certificateless public key cryptography, sequential aggregate signature, bilinear map, random oracle

中图分类号:

TN309

王竹, 杨思琦, 李凤华, 耿魁, 彭婷婷, 史梦瑶. 高效可证明安全的无证书有序聚合签名方案[J]. 通信学报, 2022, 43(5): 58-67.

Zhu WANG, Siqi YANG, Fenghua LI, Kui GENG, Tingting PENG, Mengyao SHI. Efficient and provably-secure certificateless sequential aggregate signature scheme[J]. Journal on Communications, 2022, 43(5): 58-67.

图/表 3

参考文献 28

[1]	BONEH D , GENTRY C , LYNN B ,et al. Aggregate and verifiably encrypted signatures from bilinear maps[C]// Lecture Notes in Computer Science. Berlin:Springer, 2003: 416-432.
[2]	BOLDYREVA A , GENTRY C , O’ NEILL A ,et al. Ordered multisignatures and identity-based sequential aggregate signatures,with applications to secure routing[C]// Proceedings of the 14th ACM Conference on Computer and Communications Security. New York:ACM Press, 2007: 276-285.
[3]	BANERJEE N , CORNER M D , LEVINE B N . An energy-efficient architecture for DTN throwboxes[C]// Proceedings of IEEE INFOCOM 2007 - 26th IEEE International Conference on Computer Communications. Piscataway:IEEE Press, 2007: 776-784.
[4]	HA J . An efficient and robust anonymous authentication scheme in global mobility networks[J]. International Journal of Security and Its Applications, 2015,9(10): 297-312.
[5]	SHEN L M , MA J F , LIU X M ,et al. A provably secure aggregate signature scheme for healthcare wireless sensor networks[J]. Journal of Medical Systems, 2016,40(11): 244.
[6]	LIU J K , BAEK J , ZHOU J Y . Certificate-based sequential aggregate signature[C]// Proceedings of the Second ACM Conference on Wireless Network Security. New York:ACM Press, 2009: 21-28.
[7]	VERMA G K , SINGH B B . Short certificate-based proxy signature scheme from pairings[J]. Transactions on Emerging Telecommunications Technologies, 2017,28(12): e3214.
[8]	VERMA G K , SINGH B B , KUMAR N ,et al. CB-CAS:certificate-based efficient signature scheme with compact aggregation for industrial Internet of things environment[J]. IEEE Internet of Things Journal, 2020,7(4): 2563-2572.
[9]	MURANAKA K , YANAI N , OKAMURA S ,et al. ISDSR:secure DSR with ID-based sequential aggregate signature[C]// Proceedings of the 13th International Joint Conference on e-Business and Telecommunications.[S.l.]: SciTePress, 2016: 376-387.
[10]	KOJIMA H , YANAI N , CRUZ J P . ISDSR:improving the security and availability of secure routing protocol[J]. IEEE Access, 2019,7: 74849-74868.
[11]	HORNG S J , TZENG S F , HUANG P H ,et al. An efficient certificateless aggregate signature with conditional privacy-preserving for vehicular sensor networks[J]. Information Sciences, 2015,317: 48-66.
[12]	GAYATHRI N B , THUMBUR G , REDDY P V ,et al. Efficient pairing-free certificateless authentication scheme with batch verification for vehicular ad-hoc networks[J]. IEEE Access, 2018,6: 31808-31819.
[13]	刘丹, 石润华, 张顺 ,等. 无线网络中基于无证书聚合签名的高效匿名漫游认证方案[J]. 通信学报, 2016,37(7): 182-192.
	LIU D , SHI R H , ZHANG S ,et al. Efficient anonymous roaming authentication scheme using certificateless aggregate signature in wireless network[J]. Journal on Communications, 2016,37(7): 182-192.
[14]	KAMIL I A , OGUNDOYIN S O . An improved certificateless aggregate signature scheme without bilinear pairings for vehicular ad hoc networks[J]. Journal of Information Security and Applications, 2019,44: 184-200.
[15]	ZHAO Y N , HOU Y Z , WANG L L ,et al. An efficient certificateless aggregate signature scheme for the Internet of vehicles[J]. Transactions on Emerging Telecommunications Technologies, 2020,31(5): e3708.
[16]	XIE J , HU Y P , GAO J T ,et al. Certificateless sequential aggregate signature scheme on NTRU lattice[J]. Chinese Journal of Electronics, 2019,28(2): 294-300.
[17]	CAHYADI E F , HWANG M S . A comprehensive survey on certificateless aggregate signature in vehicular ad hoc networks[J]. IETETechnical Review, 2022:doi.org/10.1080/02564602.2021.2017800.
[18]	GALBRAITH S D , PATERSON K G , SMART N P . Pairings for cryptographers[J]. Discrete Applied Mathematics, 2008,156(16): 3113-3121.
[19]	LYSYANSKAYA A , MICALI S , REYZIN L ,et al. Sequential aggregate signatures from trapdoor permutations[C]// Advances in Cryptology - EUROCRYPT 2004. Berlin:Springer, 2004: 74-90.
[20]	BONEH D , LYNN B , SHACHAM H . Short signatures from the Weil pairing[C]// Advances in Cryptology - ASIACRYPT 2001. Berlin:Springer, 2001: 514-532.
[21]	SHIM K A . Security models for certificateless signature schemes revisited[J]. Information Sciences, 2015,296: 315-321.
[22]	CUI J , ZHANG J , ZHONG H ,et al. An efficient certificateless aggregate signature without pairings for vehicular ad hoc networks[J]. Information Sciences, 2018,451/452:1-15.
[23]	秦艳琳, 吴晓平 . 高效的无证书有序多重签名方案[J]. 通信学报, 2013,34(7): 105-110.
	QIN Y L , WU X P . Efficient certificateless sequential multi-signature scheme[J]. Journal on Communications, 2013,34(7): 105-110.
[24]	许芷岩, 吴黎兵, 李莉 ,等. 新的无证书广义指定验证者聚合签名方案[J]. 通信学报, 2017,38(11): 76-83.
	XU Z Y , WU L B , LI L ,et al. New certificateless aggregate signature scheme with universal designated verifier[J]. Journal on Communications, 2017,38(11): 76-83.
[25]	张玉磊, 周冬瑞, 李臣意 ,等. 高效的无证书广义指定验证者聚合签名方案[J]. 通信学报, 2015,36(2): 52-59.
	ZHANG Y L , ZHOU D R , LI C Y ,et al. Certificateless-based efficient aggregate signature scheme with universal designated verifier[J]. Journal on Communications, 2015,36(2): 52-59.
[26]	MEI Q , XIONG H , CHEN J H ,et al. Efficient certificateless aggregate signature with conditional privacy preservation in IoV[J]. IEEE Systems Journal, 2021,15(1): 245-256.
[27]	WANG H W , WANG L L , ZHANG K ,et al. A conditional privacy-preserving certificateless aggregate signature scheme in the standard model for VANETs[J]. IEEE Access, 2022,10: 15605-15618.
[28]	张振超 . 可证明安全的无证书签名方案研究[D]. 扬州:扬州大学, 2021.
	ZHANG Z C . Research on provably secure certificateless signature scheme[D]. Yangzhou:Yangzhou University, 2021.

方案	单个签名生成	聚合签名生成	聚合签名验证
文献[23]方案	3BP+SM+2P+3E	nP+nE	(n+2)BP+n SM+nP
文献[13]方案	3BP+5E+3P	2nP	3BP+(2 n+1)P+2 nE
文献[24]方案	3BP+2P+3E	nP	3BP+3 nP+nE
文献[25]方案	4BP+3E+2P	2nP+nE	4BP+2 nP
文献[26]方案	3BP+P+4E	2nP	3BP+2 nE
文献[27]方案	2BP+5P+5E	3nP	2BP+(3 n+1)P+2 nE
文献[28]方案	3P+2E	nP+nE	3BP+nE
本文方案	2E+5P	0	4BP

高效可证明安全的无证书有序聚合签名方案

Efficient and provably-secure certificateless sequential aggregate signature scheme

在线阅读

PDF下载

可视化

摘要/Abstract

引用本文

使用本文

图/表 3

参考文献 28

相关文章 15

Metrics

推荐阅读 0

[1]	王子园, 杜瑞忠. 边缘环境下基于无证书公钥密码的数据完整性审计方案[J]. 通信学报, 2022, 43(7): 62-72.
[2]	秦艳琳,吴晓平,胡卫. 抗密钥泄露的无证书签密方案[J]. 通信学报, 2017, 38(Z2): 43-50.
[3]	王真,马兆丰,罗守山. 基于身份的移动互联网高效认证密钥协商协议[J]. 通信学报, 2017, 38(8): 19-27.
[4]	莫若,马建峰,刘西蒙,李琦. 支持树形访问结构的多权威基于属性的签名方案[J]. 通信学报, 2017, 38(7): 96-104.
[5]	杜红珍,温巧燕. 无证书强指定验证者多重签名[J]. 通信学报, 2016, 37(6): 20-28.
[6]	秦艳琳,吴晓平,胡卫. 高效的无证书多接收者匿名签密方案[J]. 通信学报, 2016, 37(6): 129-136.
[7]	李昊星,李凤华,宋承根,阎亚龙. 支持身份认证的数据持有性证明方案[J]. 通信学报, 2016, 37(10): 117-127.
[8]	杜红珍,温巧燕. 改进的无证书有序多重签名方案[J]. 通信学报, 2015, 36(10): 56-61.
[9]	黄文廷，佟玲玲，王永建. 基于可信平台模（TPCM）的盲签名方案[J]. 通信学报, 2013, 34(Z1): 13-105.
[10]	黄文廷,佟玲玲,王永建. 基于可信平台模（TPCM）的盲签名方案[J]. 通信学报, 2013, 34(Z1): 101-105.
[11]	秦艳琳，吴晓平. 高效的无证书有序多重签名方案[J]. 通信学报, 2013, 34(7): 12-110.
[12]	秦艳琳,吴晓平. 高效的无证书有序多重签名方案[J]. 通信学报, 2013, 34(7): 105-110.
[13]	陈亮,崔永泉,田苗苗,付小青,徐鹏. 对2个基于身份签名方案的伪造攻击[J]. 通信学报, 2013, 34(2): 123-127.
[14]	冯涛,梁一鑫. 可证安全的无证书盲代理重签名[J]. 通信学报, 2012, 33(Z1): 58-69.
[15]	马骏,马建峰,郭渊博. 可证明安全的智能移动终端私钥保护方案[J]. 通信学报, 2012, 33(12): 108-115.