电子学报 ›› 2016, Vol. 44 ›› Issue (5): 1111-1116.DOI: 10.3969/j.issn.0372-2112.2016.05.014

• 学术论文 • 上一篇    下一篇

密钥隔离的无证书聚合签名

寻甜甜1, 于佳1,2, 杨光洋1, 江秀秀1, 郝蓉1   

  1. 1. 青岛大学信息工程学院, 山东青岛 266071;
    2. 山东省科学院山东省计算机网络重点实验室, 山东济南 250014
  • 收稿日期:2014-10-20 修回日期:2015-07-01 出版日期:2016-05-25
    • 通讯作者:
    • 于佳
    • 作者简介:
    • 寻甜甜 女,1988年出生于山东济宁.青岛大学硕士,现为山东外事翻译职业学院助教,主要研究方向信息安全.
    • 基金资助:
    • 国家自然科学基金 (No.61272425,No.61572267); 山东省计算机网络重点实验室开放课题 (No.SDKLCN-2013-03); 青岛市建设事业发展项目 (No.JK2015-26)

Key-Insulated Certificateless Aggregate Signature

XUN Tian-tian1, YU Jia1,2, YANG Guang-yang1, JIANG Xiu-xiu1, HAO Rong1   

  1. 1. College of Information Engineering, Qingdao University, Qingdao, Shandong 266071, China;
    2. Shandong Provincial Key Laboratory of Computer Network, Shandong Academy of Sciences, Jinan, Shandong 250014, China
  • Received:2014-10-20 Revised:2015-07-01 Online:2016-05-25 Published:2016-05-25
    • Supported by:
    • National Natural Science Foundation of China (No.61272425, No.61572267); Open Project of Shandong Provincial Key Lobaratory of Computer Networks (No.SDKLCN-2013-03); Construction Development Project (No.JK2015-26)

摘要:

无证书的聚合签名的提出是为了解决密钥托管问题以及复杂的证书管理问题.然而在无证书的聚合签名中,一旦某一签名者的密钥发生泄漏,所有由此签名者参与生成的聚合签名都将不再安全.为了减小无证书的聚合签名中密钥泄漏带来的危害,本文首次将密钥隔离安全机制嵌入到无证书的聚合签名中,提出了密钥隔离的无证书聚合签名的概念和安全模型,并给出了一个实用的方案,通过与协助器的交互,实现了对签名者密钥的定时更新.同时证明了方案在随机预言机模型下是安全的,即,满足密钥隔离安全、强密钥隔离安全和安全密钥更新的性质.

关键词: 聚合签名, 密钥隔离, 无证书签名, 密钥托管, 双线性配对

Abstract:

Certificateless aggregate signature is proposed to solve the key escrow problem and the complex certificate management problem.If the private key of any signer is exposed, the certificateless aggregate signature generated by the users including this signer will no longer be secure.To mitigate the damages of key-exposure in certificateless aggregate signature, we firstly integrate the key isolation mechanism into certificateless aggregate signature, and proposed the definition of key-insulated certificateless aggregate signature and its security model.We give a practical scheme, which achieves the periodical update of the signer's secret key by the interaction with the helper.We prove the proposed scheme is secure in the random oracle model, i.e., the scheme has key insulated security, strong key insulated security and secure key updates.

Key words: aggregate signature, key insulation, certificateless signature, key escrow, bilinear pairings

中图分类号: