通信学报 ›› 2022, Vol. 43 ›› Issue (5): 58-67.doi: 10.11959/j.issn.1000-436x.2022073

• 学术论文 • 上一篇    下一篇

高效可证明安全的无证书有序聚合签名方案

王竹1,2, 杨思琦1,2, 李凤华1,2, 耿魁1, 彭婷婷1,2, 史梦瑶1,2   

  1. 1 中国科学院信息工程研究所,北京 100093
    2 中国科学院大学网络空间安全学院,北京 100049
  • 修回日期:2022-03-13 出版日期:2022-05-25 发布日期:2022-05-01
  • 作者简介:王竹(1972- ),女,山西太原人,博士,中国科学院信息工程研究所研究员,主要研究方向为密码理论与技术
    杨思琦(1997- ),女,四川绵阳人,中国科学院信息工程研究所硕士生,主要研究方向为信息安全、安全协议
    李凤华(1966- ),男,湖北浠水人,博士,中国科学院信息工程研究所研究员、博士生导师,主要研究方向为网络与系统安全、大数据安全与隐私保护、密码工程
    耿魁(1989- ),男,湖北红安人,博士,中国科学院信息工程研究所高级工程师、硕士生导师,主要研究方向为网络安全、信息保护
    彭婷婷(1998- ),女,河南信阳人,中国科学院信息工程研究所博士生,主要研究方向为信息安全
    史梦瑶(1998- ),女,河南许昌人,中国科学院信息工程研究所硕士生,主要研究方向为安全协议理论与设计
  • 基金资助:
    国家重点研发计划基金资助项目(2018YFB0803903)

Efficient and provably-secure certificateless sequential aggregate signature scheme

Zhu WANG1,2, Siqi YANG1,2, Fenghua LI1,2, Kui GENG1, Tingting PENG1,2, Mengyao SHI1,2   

  1. 1 Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China
    2 School of Cyber Security, University of Chinese Academy of Sciences, Beijing 100049, China
  • Revised:2022-03-13 Online:2022-05-25 Published:2022-05-01
  • Supported by:
    The National Key Research and Development Program of China(2018YFB0803903)

摘要:

针对目前的方案多采用后一个签名者对前一个签名者的签名进行验证后,再将签名传递给下一个签名者,导致整体签名时间过长的效率问题,基于双线性对构造了一种无证书有序聚合签名方案。多个用户按照一定的顺序对文件进行签名和认证生成聚合签名,验证者只需验证最终一个签名就可以确认签名顺序的正确性以及多个用户签名的合法性。所提方案有效降低了验证多用户顺序签名的复杂性,实现了当用户处于离线状态或者处于节点缓存能力与网络资源受限的容迟网络时,对签名合法性的离线验证。在随机预言机模型下,仿真实验证明了所提方案在敌手适应性选择消息下是存在性不可伪造的。

关键词: 无证书公钥密码, 有序聚合签名, 双线性映射, 随机预言机

Abstract:

Aiming at the problem that current schemes mostly let the latter signer to verify the multiple signatures of the previous signer, and the message is signed and then passed to the next signer, leading to the efficiency problem of long overall signature time.A sequential aggregate signature scheme based on bilinear pairs was proposed.The aggregate signatures of documents were generated by multiple users in a certain order, and only the final signature was needed to be verified to confirm the correct order of signatures and the legitimacy of multiple user signatures.The complexity of verifying the multi-user sequential signature was effectively reduced and the offline verification of the authenticity of signature was realized when the user was offline or in a delay-tolerant network with limited node caching capacity and network resources.It is shown that the proposed scheme is existential unforgeability against chosen-message attacks under adversary adaptive selection messages in the random oracle model.

Key words: certificateless public key cryptography, sequential aggregate signature, bilinear map, random oracle

中图分类号: 

No Suggested Reading articles found!