可证安全的高效无证书聚合签名方案
|
摘要
无证书密码体制下所有实体中的私钥一部分由密钥生成中心(KGC)生成,另一部分由用户自己生成,因此解决了密钥托管的问题,同时还减轻了对证书管理的负担。聚合签名方案提高了对签名的验证效率,同时减少了通信时签名的长度。文章首先对一个高效的无证书聚合签名方案进行安全性分析,指出该方案不满足不可伪造性,即恶意的KGC可以通过被动攻击伪造有效的聚合签名并通过验证。为了提高聚合签名方案的安全性,文章提出了一个可证安全的高效无证书聚合签名方案。该方案不需要双线性对运算,并克服了现有方案存在的安全问题。该方案在随机预言机模型下基于计算性Diffie-Hellman困难问题,实现了在自适应性选择消息攻击下的不可伪造性。与现有方案相比,本文方案在提高安全性的同时大大降低了计算开销。
The private key of all entities in the certificateless cryptosystem is generated by the key generation center(KGC) and the other part is generated by the user. This solves the problem of key escrow and reduces the burden of certificate management. The aggregate signature scheme improves the verification efficiency of signatures and also saves the length of signatures during communication. This paper first analyzes the security of an efficient certificateless aggregation signature scheme, and points out that the scheme does not satisfy the unforgeability. The malicious KGC can perform passive attacks, forge a valid aggregate signature and pass verification. In order to improve the security of the original scheme,this paper proposes a valid and efficient certificateless aggregation signature scheme. The new scheme does not require bilinear operation and overcomes the security problems of the original scheme. Based on the computational Diffie-Hellman problem, the improved new scheme is proved to be adaptive message attack unforgeable under the random oracle model. Compared with origin scheme, the proposal scheme is more secure and the total computational cost is greatly reduced.
The private key of all entities in the certificateless cryptosystem is generated by the key generation center(KGC) and the other part is generated by the user. This solves the problem of key escrow and reduces the burden of certificate management. The aggregate signature scheme improves the verification efficiency of signatures and also saves the length of signatures during communication. This paper first analyzes the security of an efficient certificateless aggregation signature scheme, and points out that the scheme does not satisfy the unforgeability. The malicious KGC can perform passive attacks, forge a valid aggregate signature and pass verification. In order to improve the security of the original scheme,this paper proposes a valid and efficient certificateless aggregation signature scheme. The new scheme does not require bilinear operation and overcomes the security problems of the original scheme. Based on the computational Diffie-Hellman problem, the improved new scheme is proved to be adaptive message attack unforgeable under the random oracle model. Compared with origin scheme, the proposal scheme is more secure and the total computational cost is greatly reduced.
引文
[1]CHEN Xiaofeng, WANG Yumin. A Survey of Public Key Cryptography[J].Journal on Communication, 2004,25(8):109-118.陈晓峰,王育民.公钥密码体制研究与进展[J].通信学报,2004,25(8):109-118.
[2] SHAMIR, A. Identity-based Cryptosystems and Signature Schemes[J]. Lecture Notes in Computer Science,1984,196(2):47-53.
[3]AL-RIYAMI S,PATERSON K G. Certificateless Public Key Cryptography[C]//Springer. 9th International Conference on the Theory and Application of Cryptology and Information Security,January 2003, Heidelberg,Berlin. Berlin:Springer, 2003:452-473.
[4]CHEN Yamng,CHENG Xiangguo,WANG Shuo,et al. Research on Certificateless Group Signature Scheme Based on BilinearPairings[J]. Netinfo Security,2017,17(3):53-58.陈亚萌,程相国,王硕,等.基于双线性对的无证书群签名方案研究[J].信息网络安全,2017,17(3):53-58.
[5]LI Xuan,WU Qicong. Application of Digital Signature and Encryption in Network Isolation[J]. Netinfo Security,2013,17(10):178-180.李旋,吴其聪.数字签名与加密在网络隔离中的应用研究[J].信息网络安全,2013(10):178-180.
[6]DAN B,GENTRY C,LYNN B,et al. Aggregate and Verifiably Encrypted Signatures from Bilinear Maps[J]. Lecture Notes in Computer Science,2003,2656(1):416-432.
[7]DAI Hua. Digital Signature Verification Technology Application[J]. Netinfo Security,2010,10(11):40-42.戴华.数字签名验证技术应用探究[J].信息网络安全,2010,10(11):40-42.
[8]WANG Daxing,TENG Jikai. Probably Secure Cetificateless Aggregate Signature Algorithm for Vehicular Ad hoc Network[J].Journal of Electronics&Information Technology,2018,40(1):11-17.王大星,膝济凯.车载网中可证安全的无证书聚合签名算法[J].电子与信息学报,2018,40(1):11-17.
[9]GONG Z,LONG Y,HONG X,et al. Practical Certificateless Aggregate Signatures from Bilinear Maps[C]//IEEE. Eighth Acis International Conference on Software Engineering, Artificial Intelligence,Networking,and Parallel/Distributed Computing,August 13,2007, Qingdao, China. New York:IEEE,2007:188-193.
[10]NIE H,LI Y,CHEN W,et al. NCLAS:A Novel and EfficientCertificateless Aggregate Signature Scheme[J]. Security&Communication Networks, 2016, 9(16):3141-3151.
[11]ZHANG Yulei, ZHOU Dongrui, LI Chenyi, et al.Certificateless-based Efficient Aggregate Signature Scheme with Universal Designated Verifier[J].Journal on Communication,2015,36(2):48-55.张玉磊,周冬瑞,李臣意,等.高效的无证书广义指定验证者聚合签名方案[J].通信学报,2015,36(2):48-55.
[12]XU Zhiyan, WU Libin, LI Li, et al. New Certificateless Aggregate Signature Scheme with Universal Designated Verifier[J].Journal on Communication,2017,38(11):76-83.许芷岩,吴黎兵,李莉,等.新的无证书广义指定验证者聚合签名方案[J].通信学报,2017,38(11):76-83.
[13]XUN Tiantian,YU Jia,YANG Guangyang,et al.KeyInsulated Certificateless Aggregate Signature[J].Acta Electronica Sinica,2016,44(5):1111-1116.寻甜甜,于佳,杨光洋,等.密钥隔离的无证书聚合签名[J].电子学报,2016,44(5):1111-1116.
[14]XU Yan,HUANG Liusheng,TIAN Miaomiao,et al.A Provably Secure and Compact Certificateless Aggregate Signature Scheme[J].Acta Electronica Sinica,2016,44(8):1845-1850.许艳,黄刘生,田苗苗,等.一种可证安全的紧致无证书聚合签名方案[J].电子学报,2016,44(8):1845-1850.
[15]KANG Baoyuan,WANG Mu,JINGDongya. An Efficient Certificateless Aggregate Signature Scheme[J]. Wuhan University Journal of Natural Sciences,2017,22(2):165-170.
[2] SHAMIR, A. Identity-based Cryptosystems and Signature Schemes[J]. Lecture Notes in Computer Science,1984,196(2):47-53.
[3]AL-RIYAMI S,PATERSON K G. Certificateless Public Key Cryptography[C]//Springer. 9th International Conference on the Theory and Application of Cryptology and Information Security,January 2003, Heidelberg,Berlin. Berlin:Springer, 2003:452-473.
[4]CHEN Yamng,CHENG Xiangguo,WANG Shuo,et al. Research on Certificateless Group Signature Scheme Based on BilinearPairings[J]. Netinfo Security,2017,17(3):53-58.陈亚萌,程相国,王硕,等.基于双线性对的无证书群签名方案研究[J].信息网络安全,2017,17(3):53-58.
[5]LI Xuan,WU Qicong. Application of Digital Signature and Encryption in Network Isolation[J]. Netinfo Security,2013,17(10):178-180.李旋,吴其聪.数字签名与加密在网络隔离中的应用研究[J].信息网络安全,2013(10):178-180.
[6]DAN B,GENTRY C,LYNN B,et al. Aggregate and Verifiably Encrypted Signatures from Bilinear Maps[J]. Lecture Notes in Computer Science,2003,2656(1):416-432.
[7]DAI Hua. Digital Signature Verification Technology Application[J]. Netinfo Security,2010,10(11):40-42.戴华.数字签名验证技术应用探究[J].信息网络安全,2010,10(11):40-42.
[8]WANG Daxing,TENG Jikai. Probably Secure Cetificateless Aggregate Signature Algorithm for Vehicular Ad hoc Network[J].Journal of Electronics&Information Technology,2018,40(1):11-17.王大星,膝济凯.车载网中可证安全的无证书聚合签名算法[J].电子与信息学报,2018,40(1):11-17.
[9]GONG Z,LONG Y,HONG X,et al. Practical Certificateless Aggregate Signatures from Bilinear Maps[C]//IEEE. Eighth Acis International Conference on Software Engineering, Artificial Intelligence,Networking,and Parallel/Distributed Computing,August 13,2007, Qingdao, China. New York:IEEE,2007:188-193.
[10]NIE H,LI Y,CHEN W,et al. NCLAS:A Novel and EfficientCertificateless Aggregate Signature Scheme[J]. Security&Communication Networks, 2016, 9(16):3141-3151.
[11]ZHANG Yulei, ZHOU Dongrui, LI Chenyi, et al.Certificateless-based Efficient Aggregate Signature Scheme with Universal Designated Verifier[J].Journal on Communication,2015,36(2):48-55.张玉磊,周冬瑞,李臣意,等.高效的无证书广义指定验证者聚合签名方案[J].通信学报,2015,36(2):48-55.
[12]XU Zhiyan, WU Libin, LI Li, et al. New Certificateless Aggregate Signature Scheme with Universal Designated Verifier[J].Journal on Communication,2017,38(11):76-83.许芷岩,吴黎兵,李莉,等.新的无证书广义指定验证者聚合签名方案[J].通信学报,2017,38(11):76-83.
[13]XUN Tiantian,YU Jia,YANG Guangyang,et al.KeyInsulated Certificateless Aggregate Signature[J].Acta Electronica Sinica,2016,44(5):1111-1116.寻甜甜,于佳,杨光洋,等.密钥隔离的无证书聚合签名[J].电子学报,2016,44(5):1111-1116.
[14]XU Yan,HUANG Liusheng,TIAN Miaomiao,et al.A Provably Secure and Compact Certificateless Aggregate Signature Scheme[J].Acta Electronica Sinica,2016,44(8):1845-1850.许艳,黄刘生,田苗苗,等.一种可证安全的紧致无证书聚合签名方案[J].电子学报,2016,44(8):1845-1850.
[15]KANG Baoyuan,WANG Mu,JINGDongya. An Efficient Certificateless Aggregate Signature Scheme[J]. Wuhan University Journal of Natural Sciences,2017,22(2):165-170.