标准模型下可撤销的基于身份的代理重签名方案

doi:10.11959/j.issn.1000-436x.2019072

Abstract

Abstract:

User revocation is necessary to the practical application of identity-based proxy re-signature scheme.To solve the problem that the existing identity-based proxy re-signature schemes cannot provide revocation functionality,the notion of revocable identity-based proxy re-signature was introduced.Furthermore,the formal definition and security model of revocable identity-based proxy re-signature were presented.Based on proxy re-signature scheme and binary tree structure,a revocable identity-based proxy re-signature scheme was proposed.In the proposed,scheme,the user's signing key consists of two parts,a secret key and an update key.The secret key transmitted over the secure channel is fixed,but the update key broadcasted by the public channel is periodically changed.Only the user who has not been revoked can obtain the update key,and then randomize the secret key and update the key to generate the corresponding signature key of the current time period.In the standard model,the proposed scheme is proved to be existentially unforgeable against adaptive chosen-identity and chosen-message attacks.In addition,the proposed scheme has properties of bidirectionality and multi-use,and can resist signing key exposure attacks.The analysis results show that the proposed scheme can efficiently revoke the user and update the user’s key,and thus it has good scalability.

Key words: identity-based proxy re-signature, user revocation, standard model, signing key exposure, binary tree

CLC Number:

TP309.7

Xiaodong YANG,Yutong LI,Jinli WANG,Tingchun MA,Caifen WANG. Revocable identity-based proxy re-signature scheme in the standard model[J]. Journal on Communications, 2019, 40(5): 153-162.

Figures/Tables 5

References 26

[1]	YANG T , YU B , WANG H ,et al. Cryptanalysis and improvement of Panda-public auditing for shared data in cloud and internet of things[J]. Multimedia Tools and Applications, 2017,76(19): 19411-19428.
[2]	SOOKHAK M , GANI A , KHAN M K ,et al. Dynamic remote data auditing for securing big data storage in cloud computing[J]. Information Sciences, 2017,380: 101-116.
[3]	WATERS B , . Efficient identity-based encryption without random oracles[C]// The 24th Annual International Conference on The Theory and Application of Cryptographic Techniques. IACR, 2005: 114-127.
[4]	SHAO J , CAO Z , WANG L ,et al. Proxy re-signature schemes without random oracles[C]// The 8th International Conference on Cryptology. Springer, 2007: 197-209.
[5]	FENG J , LAN C , JIA B . ID-based proxy re-signature scheme with strong unforgeability[J]. Journal of Computer Applications, 2014,34(11): 3291-3294.
[6]	HU X , ZHANG Z , YANG Y . Identity based proxy re-signature schemes without random oracle[C]// Computational Intelligence and Security. 2009: 256-259.
[7]	SHAO J , WEI G , LING Y ,et al. Unidirectional identity-based proxy re-signature[C]// IEEE International Conference on Communications. 2011: 1-5.
[8]	HUANG P , YANG X , YAN L I ,et al. Identity-based proxy re-signature scheme without bilinear pairing[J]. Journal of Computer Applications, 2015,35(6): 1678-1682.
[9]	JIANG M M , HU Y P , WANG B C ,et al. Identity-based unidirectional proxy re-signature over lattice[J]. Journal of Electronics ＆ Information Technology, 2014,36(3): 645-649.
[10]	TIAN M M . Identity-based proxy re-signatures from lattices[J]. Information Processing Letters, 2015,115(4): 462-467.
[11]	CANETTI R , GOLDREICH O , HALEVI S . The random oracle methodology,revisited[J]. Journal of the ACM, 2004,51(4): 557-594.
[12]	BONEH D , FRANKLIN M . Identity-based encryption from the weil pairing[C]// Advances in CRYPTO. 2001: 213-229.
[13]	BOLDYREVA A , GOYAL V , KUMAR V . Identity-based encryption with efficient revocation[C]// ACM Conference on Computer and Communications Security. 2008: 417-426.
[14]	LEE K , LEE D H , PARK J H . Efficient revocable identity-based encryption via subset difference methods[J]. Designs,Codes and Cryptography, 2017,85(1): 39-76.
[15]	ZHANG L , SUN Z , MU Y ,et al. Revocable hierarchical identity-based encryption over lattice for pay-tv systems[J]. International Journal of Embedded Systems, 2017,9(4): 379-398.
[16]	TSAI T T , TSENG Y M , WU T Y . Provably secure revocable ID-based signature in the standard model[J]. Security and Communication Networks, 2013,6(10): 1250-1260.
[17]	LIU Z , ZHANG X , HU Y ,et al. Revocable and strongly unforgeable ID-based signature scheme in the standard model[J]. Security and Communication Networks, 2016,9(14): 2422-2433.
[18]	JIA X , HE D , ZEADALLY S ,et al. Efficient revocable ID-based signature with cloud revocation server[J]. IEEE Access, 2017,5: 2945-2954.
[19]	YANG X , YANG P , AN F ,et al. Cryptanalysis and improvement of a strongly unforgeable identity-based signature scheme[C]// International Conference on Information Security and Cryptology.Springer. 2017: 196-208.
[20]	ZHAO J , WEI B , SU Y . Communication-efficient revocable identity-based signature from multilinear maps[J]. Journal of Ambient Intelligence and Humanized Computing, 2019,10(1): 1-12.
[21]	WEI J , HUANG X , HU X ,et al. Revocable threshold attribute-based signature against signing key exposure[C]// International Conference on Information Security Practice and Experience. 2015: 316-330.
[22]	ZHENG Q , LI Q , AZGIN A ,et al. Data verification in information-centric networking with efficient revocable certificateless signature[C]// IEEE Conference on Communications and Network Security. IEEE, 2017: 1-9.
[23]	HUNG Y H , TSENG Y M , HUANG S S . Lattice-based revocable certificateless signature[J]. Symmetry, 2017,9(10): 242-259.
[24]	XU S , YANG G , MU Y . A new revocable and re-delegable proxy signature and its application[J]. Journal of Computer Science and Technology, 2018,33(2): 380-399.
[25]	WEI J , LIU W , HU X . Forward-secure identity-based signature with efficient revocation[J]. International Journal of Computer Mathematics, 2017,94(7): 1390-1411.
[26]	NAOR D , NAOR M , LOTSPIECH J . Revocation and tracing schemes for stateless receivers[C]// The 21st Annual International Cyptology Conference. IACR, 2001: 41-62.

Metrics

Recommended 0

No Suggested Reading articles found!

符号	说明	符号	说明	符号	说明
BT	二叉树	η	叶子节点	G或G_T	循环群
N	叶子节点个数、用户数	path(η)	η到root的节点集合	p	素数
root	根节点	t_i	时间周期	g	G的生成元
θ	非叶子节点	Y	更新的最小节点集合	e	双线性映射
θ_l、θ_r	左/右孩子节点	RL或RL′	用户撤销列表	T	最大时间周期
st	状态	msk	主密钥	M	消息
ID	用户身份	m和n	字符串的比特长度	sk_θ	秘密密钥
uk_t	更新密钥	dk_ID,t	签名密钥	σ_A	原始签名
σ_B	重签名	rk_A→B	重签名密钥	⊥	错误符号

方案	签名长度	重签名长度	签名	重签名	签名验证	抗签名密钥泄露攻击	用户撤销功能
Shao方案^[4]	3\|G\|	3\|G\|	2exp	4Pa +2exp	4Pa	否	否
Feng方案^[5]	3\|G\|	4\|G\|	3exp	4Pa +5exp	5Pa+3exp	否	否
Hu方案^[6]	4\|G\|+\|p\|	4\|G\|+\|p\|	6exp	4Pa+6exp	4Pa+4exp	否	否
本文方案	4\|G\|	4\|G\|	2exp	5Pa+3exp	5Pa+exp	是	是

Revocable identity-based proxy re-signature scheme in the standard model

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 5

References 26

Related Articles 15

Metrics

Recommended 0

[1]	Hongxia HOU, Mingrui ZHANG, Yanqi ZHAO, Xiaoli DONG. ID-based ring signature on prime order group from asymmetric pairing [J]. Journal on Communications, 2021, 42(9): 155-164.
[2]	Jiawei ZHANG, Jianfeng MA, Zhuo MA, Teng LI. Time-based and privacy protection revocable and traceable data sharing scheme in cloud computing [J]. Journal on Communications, 2021, 42(10): 81-94.
[3]	Miaomiao TIAN, Jing CHEN, Hong ZHONG. Identity-based incremental signature scheme from lattices [J]. Journal on Communications, 2021, 42(1): 108-117.
[4]	Ruizhong DU,Pengliang SHI,Xinfeng HE. Cloud data assured deletion scheme based on overwrite verification [J]. Journal on Communications, 2019, 40(1): 130-140.
[5]	Qian MENG,Jianfeng MA,Kefei CHEN,Yinbin MIAO,Tengfei YANG. Data comparable encryption scheme based on cloud computing in Internet of things [J]. Journal on Communications, 2018, 39(4): 167-175.
[6]	Xiaodong YANG,Chunlin CHEN,Ping YANG,Faying AN,Tingchun MA,Caifen WANG. Partially blind proxy re-signature scheme with proven security [J]. Journal on Communications, 2018, 39(2): 65-72.
[7]	Qi-ying WU,Jian-feng MA,Hui LI,Jun-wei ZHANG,Qi JIANG,Yin-bin MIAO. Multi-keyword search over encrypted data with user revocation [J]. Journal on Communications, 2017, 38(8): 183-193.
[8]	Yong-li TANG,Ming-xing HU,Kun LIU,Qing YE,Xi-xi YAN. Novel identity-based fully homomorphic encryption scheme from lattice [J]. Journal on Communications, 2017, 38(5): 39-47.
[9]	Shu-fen NIU,Ling NIU,Cai-fen WANG,Ya-hong LI. Certificateless generalized signcryption scheme in the standard model [J]. Journal on Communications, 2017, 38(4): 35-45.
[10]	Qing YE,Ming-xing HU,Yong-li TANG,Kun LIU,Xi-xi YAN. Novel hierarchical identity-based encryption scheme from lattice [J]. Journal on Communications, 2017, 38(11): 54-64.
[11]	Xiao-dong YANG,Miao-miao YANG,Guo-juan GAO,Ya-nan LI,Xiao-yong LU,Cai-fen WANG. ID-based server-aided verification signature scheme with strong unforgeability [J]. Journal on Communications, 2016, 37(6): 49-55.
[12]	ANGChun-li Y,ANJian-hua Y,HENGShi-hui Z,ANGLi-cheng W,ANGYu Y. Analysis and improvement of an identity-based signature scheme from lattices [J]. Journal on Communications, 2015, 36(5): 104-111.
[13]	Yan-qiong LI,Ji-guo LI,Yi-chen ZHANG. Certificateless signature scheme without random oracles [J]. Journal on Communications, 2015, 36(4): 186-194.
[14]	Zuo-bin YING,Jian-feng MA,Jiang-tao CUI. Partially policy hidden CP-ABE supporting dynamic policy updating [J]. Journal on Communications, 2015, 36(12): 1-221.
[15]	. New user revocation approach based on intermediate agency for cloud data access control [J]. Journal on Communications, 2015, 36(11): 92-101.