对2个属性基签名方案安全性的分析和改进

doi:10.11959/j.issn.1000-436x.2016263

通信学报 ›› 2016, Vol. 37 ›› Issue (Z1): 168-173.doi: 10.11959/j.issn.1000-436x.2016263

对2个属性基签名方案安全性的分析和改进

杨骁¹,向广利¹,魏江宏^2,³,孙瑞宗¹

¹ 武汉理工大学计算机科学与技术学院，湖北武汉 430070
² 解放军信息工程大学，河南郑州 450001
³ 数字工程与先进计算国家重点实验室，河南郑州 450001

出版日期:2016-10-25 发布日期:2017-01-17

Security analysis and improvement of two attribute-based signature schemes

Xiao YANG¹,Guang-li XIANG¹,Jiang-hong WEI^2,³,Rui-zong SUN¹

¹ School of Computer Science and Technology,Wuhan University of Technology,Wuhan 430070,China
² PLA Information Engineering University,Zhengzhou 450001,China
³ Stake Key Laboratory of Mathematical Engineering and Advanced Computing,Zhengzhou 450001,China

Online:2016-10-25 Published:2017-01-17

摘要/Abstract

摘要：

为了克服已有属性基签名机制在安全性、效率和签名策略上的缺陷，Ma等和Cao等分别提出了一个单属性机构环境下的门限属性基签名体制和多属性机构环境下签名策略支持属性的与、或、门限操作的属性基签名体制，并在计算性Diffie-Hellman假设下给出了相应体制的安全性证明。通过给出具体的攻击方法，指出这2个属性基签名方案都是不安全的，均不能抵抗伪造攻击，无法在实际中应用。此外，分析了这2个方案不安全的原因，并给出了针对Ma等方案的一种改进措施。

关键词: 属性基签名, 安全性分析, 伪造攻击

Abstract:

In order to overcome the drawbacks of current attribute-based signature (ABS) schemes in terms of security,efficiency and signing policy,Ma,et al.and Cao,et al.respectively proposed a threshold ABS with single attribute au-thority and a multi-authority ABS with signing policy supporting AND,OR,threshold gates,and presented the security proof of their schemes under computational Diffie-Hellman assumption.Both schemes were demonstrated have security pitfalls by presenting specified attacks against them.Specifically,their schemes are all vulnerable to forgery attack.Thus,they are not feasible for practical applications.In addition,the cause of the flaws in these ABS schemes are presented,as well as an improvement of Ma et al.'s scheme.

Key words: attribute-based signature, security analysis, forgeable attack

杨骁,向广利,魏江宏,孙瑞宗. 对2个属性基签名方案安全性的分析和改进[J]. 通信学报, 2016, 37(Z1): 168-173.

Xiao YANG,Guang-li XIANG,Jiang-hong WEI,Rui-zong SUN. Security analysis and improvement of two attribute-based signature schemes[J]. Journal on Communications, 2016, 37(Z1): 168-173.

参考文献 19

[1]	SAHAI A , WATERS B . Fuzzy identity-based encryption[C]//Advances in Cryptology-Eurocrypt 2005. 2005:457-473.
[2]	OKAMOTO T , TAKASHIMA K . Efficient attribute-based signatures for non-monotone predicates in the standard model[J]. IEEE Transac-tions on Cloud Computing, 2014,2(4):409-421.
[3]	CHEN T , LI J , HUANG X , et al. Secure outsourced attribute-based signatures[J]. IEEE Transactions on Parallel and Distributed Systems, 2014,25(12):3285-3294.
[4]	WEI J , HUANG X , HU X , et al. Revocable threshold attribute-based signature against signing key exposure[C]//ISPEC 2015. 2015:316-330.
[5]	WEI J , HU X , LIU W . Traceable attribute-based signcryption[J]. Secu-rity and Communication Networks, 2014,7(12):2302-2317.
[6]	杨晓元，林志强，韩益亮 . 高效的模糊属性基签密方案[J]. 通信学报， 2013,34(Z1):8-13. YANG X Y , LIN Z Q , HAN Y L . Efficient fuzzy attribute-based sign-cryption scheme[J]. Journal on Communications, 2013,34(Z1):8-13.
[7]	MAJI H , PRABHAKARAN M , ROSULEK M . Attribute-based sig-natures:achieving attribute-privacy and collusion-resistance[EB/OL]. , 2008.
[8]	KUMAR S , AGRAWAL S , BALARAMAN S , et al. Attribute based signatures for bounded multi-level threshold circuits[C]//EuroPKI 2010. 2011:141-154.
[9]	LI J , AU M , SUSILO W , XIE D , et al. Attribute-based signature and its applications[C]//The 5th ACM Symposium on Information,Computer and Communications Security-ASIACCS'10. New York, 2010:60-69.
[10]	LI J , KIM K . Hidden attribute-based signatures without anonymity revocation[J]. Information Sciences, 2010,180(9):1681-1689.
[11]	SHAHANDASHTI S , SAFAVI N . Threshold attribute-based signa-tures and their application to anonymous credential sys-tems[C]//Progress in Cryptology-AFRICACRYPT 2009. 2009:198-216.
[12]	MAJI H , PRABHAKARAN M , ROSULEK M . Attribute-based signa-tures[C]//CT-RSA 2011. 2011:376-392.
[13]	OKAMOTO T , TAKASHIMA K . Efficient attribute-based signatures for non-monotone predicates in the standard model[C]//Public Key Cryptography-PKC 2011. 2011:35-52.
[14]	CAO D , WANG X , WANGT , SU J . An expressive attribute-based signature scheme without random oracles[C]//2011 International Con-ference on Computer Application and System Modeling (ICCASM2011). 2011:560-564.
[15]	ESCALA A , HERRANZ J , MORILLO P . Revocable attribute-based signatures with adaptive security in the standard model[C]//Proceed-ings of the 4th International Conference on Progress in Cryptology in Africa (AFRICACRYPT'11). 2011:224-241.
[16]	WEI J , LIU W , HU X . Forward-secure threshold attribute-based sig-nature scheme[J]. The Computer Journal, 2015,58(10):2492-2506.
[17]	GHADAFI E . Stronger security notions for decentralized traceable attribute-based signatures and more efficient constructions[C]//CT-RSA 2015. 2015:391-409.
[18]	马春光，石岚，周长利，等. 属性基门限签名方案及其安全性研究[J]. 电子学报， 2013,41(5):1012-1015. MA C G , SHI L , ZHOU C L , et al. Threshold attribute-based signature and its security[J]. Acta Electronic Sinica, 2013,41(5):1012-1015.
[19]	CAO D , ZHAO B , WANG X , et al. Flexible multi-authority attrib-ute-based signature schemes for expressive policy[J]. Mobile Informa-tion Systems, 2012,8(3):255-274.

对2个属性基签名方案安全性的分析和改进

Security analysis and improvement of two attribute-based signature schemes

在线阅读

PDF下载

可视化

摘要/Abstract

引用本文

使用本文

参考文献 19

相关文章 10

Metrics

推荐阅读 0

[1]	吴铤, 胡程楠, 陈庆南, 陈安邦, 郑秋华. 基于执行体划分的防御增强型动态异构冗余架构[J]. 通信学报, 2021, 42(3): 122-134.
[2]	许芷岩,吴黎兵,李莉,何德彪. 无线漫游认证中可证安全的无证书聚合签名方案[J]. 通信学报, 2017, 38(7): 123-130.
[3]	许芷岩,吴黎兵,李莉,何德彪. 新的无证书广义指定验证者聚合签名方案[J]. 通信学报, 2017, 38(11): 76-83.
[4]	许艳，黄刘生，田苗苗，仲红. 可证安全的高效无证书有序多重签名方案[J]. 通信学报, 2014, 35(11): 14-126.
[5]	许艳,黄刘生,田苗苗,仲红. 可证安全的高效无证书有序多重签名方案[J]. 通信学报, 2014, 35(11): 126-131.
[6]	陈亮,崔永泉,田苗苗,付小青,徐鹏. 对2个基于身份签名方案的伪造攻击[J]. 通信学报, 2013, 34(2): 123-127.
[7]	桂荆京,张毓森. 基于串空间的ad hoc路由协议安全性分析新方法[J]. 通信学报, 2010, 31(9A): 217-222.
[8]	鲁荣波,宣恒农,何大可. 对一种高效群签名方案的安全性分析[J]. 通信学报, 2007, 28(4): 9-12.
[9]	彭华熹,冯登国. 匿名无线认证协议的匿名性缺陷和改进[J]. 通信学报, 2006, 27(9): 78-85.
[10]	吴旭辉,沈庆浩. 一种代理多签名体制的安全性分析[J]. 通信学报, 2005, 26(7): 119-122.