一种强不可伪造无证书签名方案的密码学分析与改进

doi:10.3969/j.issn.0372-2112.2018.03.013

电子学报 ›› 2018, Vol. 46 ›› Issue (3): 602-606.DOI: 10.3969/j.issn.0372-2112.2018.03.013

一种强不可伪造无证书签名方案的密码学分析与改进

吴涛, 景晓军

北京邮电大学信息与通信工程学院, 北京 100876

收稿日期:2016-09-27 修回日期:2017-05-07 出版日期:2018-03-25
- 作者简介:
- 吴涛,男.1984年7月出生,四川省达州市人.2010年于西南交通大学信息科学与技术学院取得密码学硕士学位.2013年进入北京邮电大学信息与通信工程学院,现攻读博士学位,主要从事无线与移动通信技术,保密传输技术方面有关研究.E-mail:wootao@foxmail.com;景晓军,男.现为北京邮电大学信息与通信工程学院教授,博士生导师.1999年获国防科技大学信息与通信系统专业博士学位,主要从事信息融合、图像处理、模式识别方面有关研究.E-mail:jxiaojun@bupt.edu.cn

Cryptanalysis and Improvement of a Certificateless Signature Scheme with Strong Unforgeability

WU Tao, JING Xiao-jun

School of Information and Communication Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China

Received:2016-09-27 Revised:2017-05-07 Online:2018-03-25 Published:2018-03-25

摘要/Abstract

摘要： 无证书密码体制是无线网络中一种非常有效安全保护工具.2016年，Hung等人提出了标准模型下一种强不可伪造性的无证书签名方案，该方案声称在抗哈希碰撞问题和计算Diffle-Hellman困难问题假设下是安全不可伪造的.事实上，该方案对类型II敌手是不安全的.本文给出对Hung等的方案的安全性分析，并证明对于类型II敌手可以伪造出合法签名，针对存在问题提出一种改进的无证书签名方案.

关键词: 无证书签名, 双线性对, 安全性分析, 抗哈希碰撞, Diffle-Hellman假设

Abstract: Certificateless cryptographic schemes are very useful secure protection tools in wireless network. Quite recently, a certificateless signature with strong unforgeability in the standard model was presented by Hung, et al. in 2016. Although they demonstrated that their scheme was secure and unforgeable under the collision resistant hash and computational Diffie Hellman assumptions, but we find that it is not secure against type II adversary. In this paper, we give security analysis to their scheme, and show that by giving concrete attack, a type II adversary could forge a legal signature of any message. We also put forward a possible fix of certificateless scheme which can solve secure problem.

Key words: certificateless signature, bilinear pairings, cryptanalysis, collision resistant hash, Diffie-Hellman assumptions

中图分类号:

TN918

吴涛, 景晓军. 一种强不可伪造无证书签名方案的密码学分析与改进[J]. 电子学报, 2018, 46(3): 602-606.

WU Tao, JING Xiao-jun . Cryptanalysis and Improvement of a Certificateless Signature Scheme with Strong Unforgeability[J]. Acta Electronica Sinica, 2018, 46(3): 602-606.

参考文献

[1] Zhang Y,Jiguo L I,Wang Z,et al.A new efficient certificate-based signature scheme[J].Chinese Journal of Electronics,2015,24(4):776-782.
[2] Wu T Y,Tsai T T,Tseng Y M.A revocable ID-based signcryption scheme[J].Journal of Information Hiding & Multimedia Signal Processing,2011,3(3):240-251.
[3] Shamir A.Identity-based cryptosystems and signature schemes[A].Advances in Cryptology[C].Berlin:Springer-Verlag,1984.47-53.
[4] Chen Y C,Tso R,Susilo W,et al.Certificateless Signatures:Structural Extensions of Security Models and New Provably Secure Schemes[EB/OL].http://eprint.iacr.org/2013/193.pdf,2013-06-28.
[5] Tso R,Huang X,Susilo W.Strongly secure certificateless short signatures[J].Journal of Systems & Software,2012,85(6):1409-1417.
[6] Huang X,Susilo W,Mu Y,et al.On the security of certificateless signature schemes from asiacrypt 2003[A].Cryptology and Network Security[C].Berlin:Springer-Verlag,2005.13-25.
[7] Choi K Y,Park J H,Dong H L.A new provably secure certificateless short signature scheme[J].Computers & Mathematics with Applications,2011,61(7):1760-1768.
[8] Chen Y C,Tso R,Horng G.Security analysis of choi et al.'s certificateless short signature scheme[J].Journal of Information Hiding & Multimedia Signal Processing,2013,4(3):147-154.
[9] Xiong H,Guan Z,Chen Z,et al.An efficient certificateless aggregate signature with constant pairing computations[J].Information Sciences,2013,219(10):225-235.
[10] He D,Tian M,Chen J.Insecurity of an efficient certificateless aggregate signature with constant pairing computations[J].Information Sciences,2014,268(2):458-462.
[11] Zhang F,Shen L,Wu G.Notes on the security of certificateless aggregate signature schemes[J].Information Sciences,2014,287:32-37.
[12] Yu Y,Mu Y,Wang G,et al.Improved certificateless signature scheme provably secure in the standard model[J].Iet Information Security,2012,6(2):102-110.
[13] Yuan Y,Wang C.Certificateless signature scheme with security enhanced in the standard model[J].Information Processing Letters,2014,114(9):492-499.
[14] Chen Y C,Tso R,Horng G,et al.Strongly secure certificateless signature:Cryptanalysis and improvement of two schemes[J].Journal of Information Science & Engineering,2015,31(1):297-314.
[15] Fan C I,Hsu R H,Ho P H.Truly Non-repudiation certificateless short signature scheme from bilinear pairings[J].Journal of Information Science & Engineering,2011,27(27):969-982.
[16] Hung Y H,Huang S S,Tseng Y M,et al.Certificateless signature with strong unforgeability in the standard model[J].Informatica,2015,26(4):663-684.

一种强不可伪造无证书签名方案的密码学分析与改进

Cryptanalysis and Improvement of a Certificateless Signature Scheme with Strong Unforgeability

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	赵耿, 马英杰, 陈磊, 董有恒, 侯艳丽. 基于扰动时空混沌系统的动态S盒设计[J]. 电子学报, 2022, 50(8): 2037-2042.
[2]	胡文文, 周日贵. 基于d维单个量子态的半量子密钥分发方案[J]. 电子学报, 2022, 50(5): 1025-1032.
[3]	郑秋华, 胡程楠, 崔婷婷, 申延召, 曾英佩, 吴铤. 一种基于概率分析的DHR模型安全性分析方法[J]. 电子学报, 2021, 49(8): 1586-1598.
[4]	欧庆于, 罗芳, 吴晓平, 杨鹏. 基于电压毛刺故障扰动的分组密码安全性度量方法研究[J]. 电子学报, 2021, 49(3): 417-423.
[5]	杨小东, 王美丁, 裴喜祯, 李雨潼, 陈春霖, 麻婷春. 一种标准模型下无证书签名方案的安全性分析与改进[J]. 电子学报, 2019, 47(9): 1972-1978.
[6]	宋云. 基于GHZ态局域测量的量子秘密共享[J]. 电子学报, 2019, 47(7): 1443-1448.
[7]	房丙午, 黄志球, 王勇, 李勇. 基于混合贝叶斯网络的混合系统安全性分析方法[J]. 电子学报, 2017, 45(12): 2896-2902.
[8]	李继国, 张亦辰, 卫晓霞. 可证安全的基于证书广播加密方案[J]. 电子学报, 2016, 44(5): 1101-1110.
[9]	寻甜甜, 于佳, 杨光洋, 江秀秀, 郝蓉. 密钥隔离的无证书聚合签名[J]. 电子学报, 2016, 44(5): 1111-1116.
[10]	张宇, 陈晶, 杜瑞颖, 周庆, 郑明辉. 适于车载网安全通信的高效签密方案[J]. 电子学报, 2015, 43(3): 512-517.
[11]	古春生, 景征骏, 于志敏, 吴访升. 基于遍历矩阵的公钥加密方案的安全性分析[J]. 电子学报, 2014, 42(10): 2081-2085.
[12]	徐丙凤, 黄志球, 胡军, 魏欧, 肖芳雄. 一种状态事件故障树的定量分析方法[J]. 电子学报, 2013, 41(8): 1480-1486.
[13]	明洋, 王育民. 标准模型下可证安全的通配符基于身份加密方案[J]. 电子学报, 2013, 41(10): 2082-2086.
[14]	葛爱军, 马传贵, 程庆丰. 标准模型下CCA2安全且固定密文长度的模糊基于身份加密方案[J]. 电子学报, 2013, 41(10): 1948-1952.
[15]	杜红珍, 黄梅娟, 温巧燕. 高效的可证明安全的无证书聚合签名方案[J]. 电子学报, 2013, 41(1): 72-76.