详细信息    本馆镜像全文|  推荐本文 |  |   获取CNKI官网全文
In recent years, accompanied by the development of internet and mobile communication technologies, new security challenges are posed by emerging mobile internet which is consists of several heterogeneous subnets. Identity authentication is the key to the security of the mobile network. Digital signature is one of key techniques in information security, especially in the authentication, data integrity and non-repudiation. Digital signature has a wide range of applications, while the most important one is anonymous authentication in mobile internet. In order to protect the privacy of the users, anonymous digital signatures are used usually. Generallly, anonymous digital signatures include unconditionally anonymous signatures and traceable anonymous digntures. The unconditional anonymity of unconditionally anonymous signatures may be abused, while the traceable anonymous signatures can avoid these.
     This thesis mainly focused on the research of key technology of traceable anonymous signatures including anonymous proxy signature, threshold signature, and group signature. On this basis, this thesis further studies the applications of these traceable signatures to anonymous authentication in mobile internet. The main contributions are summarized as follows.
     (1) The problem of low efficiency in digital signature and verification is pointed out by analyzing Yu et al.'s anonymous proxy signature scheme firstly, and then an efficient and secure proxy signature with the properties of anonymity and traceability is proposed. Compared with Yu et al.'s scheme, the proposed scheme has higher efficiency; it is provably secure in the random oracle model based on the CDH assumption.
     (2) An anonymous proxy signature with revocation is proposed, and according to it, an anonymous roaming authentications scheme for mobile communication network is given. The proposed schemeis is proved to be existentially unforgeable in standard model against the adaptive chosen message attack; its security is based on the CDH assumption, and it not only achieves anonymity of mobile terminal, controllability and revocation of access permission, but also reduces the computational load of mobile terminal, which makes it more suitable for mobile terminal with limited power.
     (3) We present a security analysis of Liu-Huang threshold proxy signature scheme and demonstrate that their scheme does not satisfy proxy signer's deviation and identifiability.t or more proxy signers can forge a valid signature that cannot be traced to themselves.An improved threshold proxy signature scheme is given based on Liu-Huang'scheme and the improved scheme achieves proxy signer's deviation and identifiability.
     (4) In order to solve the problem that Camenisch-Stadler's group signature scheme could not revoke members, a new member revocation scheme based on the Camenisch-Stadler's group scheme is proposed, which allows the group manager to add new members or revoke old members flexibly and freely. When a member joins the group, the group manager issues member certificate to him/her, and other members need not update the key and certificate; when a member is revoked, the group manager only adds the anonymous identity of it to revocation list, and other members need not update the key and certificate too. Furthermore, the length of the signature and the computational effort for signing and verifying are independent of the number of the group members and the revoked members. The proposed scheme is more efficient than existing revocation scheme.
     (5) An anonymous access protocol on mobile internet is proposed, which is based on the group signature. This mechanism defined two visit mode of mobile termimal----self access and cross-domain access and the progress of each mode was described in details. The analysis shows that this protocol implements anonymous access to the mobile service and is correct, non-repudiation and traceable.
[I]Diffie W, Hellman M. New direction in cryptography. IEEE Transactions on Information Theory,22(6),1976, pp.644-654.
    [2]Rabin M. Digital signatures and public-key functions as intractable as factorization. MIT Lab of Computer Science, Technical Report, MIT/LCS/ TR-212, Jan 1979.
    [3]ElGamal T. A public key cryptosystem and a signature scheme based on discrete logarithms. IEEE Trans. Information Theory, IT-31(4),1985, pp.469-472.
    [4]Fiat A, Shamir A. How to prove youself:practical solutions to identification and signature problems. In:Advances in Cryptology-CRYPTO'86, LNCS 263. Berlin: Springer-Verlag,1986, pp.186-194.
    [5]Schnorr C P. Efficient identification and signatures for smart cards. In Advances in Cryptology-CRYPTO'89, LNCS 435. Berlin:Springer-Verlag,1990, pp. 239-252.
    [6]Okamoto T. Provably Secure and practical identification schemes and correrponding signature schemes. In:Advances in Cryptology-CRYPTO'92, LNCS 740. Berlin:Springer-Verlag,1992, pp.31-35.
    [7]National Institute of Standard and Technology, NIST FIPS PUB 186, Digital Signature Standard, U S. Department of Commerce, May 1994.
    [8]Boneh D, Lynn B, Shacham H. Short signature from the Weil pairing. In: Advances in Cryptology-Asiacrypt'2001, LNCS 2248. Berlin:Springer-Verlag, 2002, pp.514-532.
    [10]Zhong Ming, Yang Yixian, An efficient unlinkable electronic cash based on bit commitment. Chinese Journal of Electronics.10(2),2001, pp.255-258.
    [11]H. Kim, J. Baek, B. Lee, K, Kim. Computing with secrets for mobile agent using one-time proxy signature, Proc. of SCIS'2001,14C-3,2001, pp.845-850.
    [12]Lam T.C, Wei V.K. A mobile agent clone detection system with itinerary privacy. IEEE 11th International Workshop on Enabling Tech-nologies:Infrastructure for Collaborative Enterprises,2002, pp.68-73.
    [13]K.Omote, A. Miyaji. A practical English auction with one-time registeration. AISP'2001,2001, pp.221-234.
    [14]K Sako. Universally verifiable auction protocol which hides losiing bids. Proc of Public Key Cryptography 2000,2000, pp,35-39.
    [15]M Mambo, K Usuda, E Okamoto. Proxy signature:Delegtion of the Power to Sign Messagers [J]. IEICE Trans Fundamentals,79(9),1996, pp.1338-1353.
    [16]Petersen H, Horster P. Self-certified keys-concepts and applications. Proc. Communications and Multimedia Security.1997,97, pp.102-116.
    [18]B. Lee, H.Kim K. Kim. Strong proxy signature and its applications. Proc of SCIS, 2001, pp.603-608.
    [19]K. Shum Victor K. Wei. A strong proxy signature scheme with proxy signer privacy protection, Proc of the 11th IEEE International Workshops on Enabling Technologies:Infrastructure for Collaborative Enterprise.2002, pp.55-56.
    [20]G. Wang, F Bao, J. Zhou, R.H.Deng. Security analysis of some proxy signature, Proc. Information Security and Cryptology-ICISC 2003, LNCS 2971, Springer-Verlag,2004, pp.305-319.
    [21]Waters B. Efficient identity-based encryption without random oracles. In:Cramer R, ed. Advances in Cryptology-EURORYPT 2005, LNCS 3494. Berlin: Springer-Verlag,2005, pp.114-127.
    [22]Y. Kim, J.Chang, Self proxy signature scheme. International Jouranl of Computer Science and Network Security,7(2),2007, pp.335-338.
    [23]Ohta K, Okamoto T. Multisignature schemes secure against active insider attacks. IEICE Trans. On Fundamentals,82(1),1999, pp.21-31.
    [26]Wang L H, Okamoto E, Miao Y et al. ID-based series-parallel multisignature schemes for multi-message from bilinear maps. WCC 2005, Springer-Verlag, 2006, LNCS 3969, pp.291-303.
    [27]Bellare M, Neven G. Identity-based multi-signatures from RSA. CT-RSA 2007, San Francisco, USA:Springer-Verlag,2007, LNCS 4377, pp.145-162.
    [28]Chaum D, Heyst EV. Group signatures. Advances in Cryptology-Eurocrypto'91, LNCS 547. Berlin:Springer-Verlag,1991, pp.257-265.
    [29]Camenisch J. Efficient and generalized group signatures. Advances in cryptology- EUROCRYPT'97. Springer-Verlag, Berlin,1997, pp.465-479.
    [30]Camenisch J, Stadler M. Efficient group signature schemes for large groups. Advances in Cryptology-CRYPTO'97, Springer-Verlag, Berlin,1997, pp. 410-424.
    [31]Ateniese G, Camenisch J, Joye M, et al. A practical and provably secure coalition-resistant group signature scheme. Advances in Cryptology-CRYPTO' 2000. Springer-Verlag, Berlin,2000, pp.255-270.
    [32]Song D X. Practical forward secure group signature schemes. Proceedings of the 8th ACM conference on Computer and Communications Security. ACM,2001, pp.225-234.
    [33]Boneh D, Boyen X, Shacham H. Short group signatures. Advances in Cryptology-CRYPTO'2004. Springer Berlin/Heidelberg,2004, pp.227-242.
    [35]Camenisch J, Lysyanskaya A. Dynamic accumulators and application to efficient revocation of anonymous credentials. Advances in Cryptology-CRYPTO 2002, 2002, pp.101-120.
    [38]Nakanishi T, Funabiki N. Verifier-local revocation group signature schemes with backward unlinkability from bilinear maps. Advances in Cryptology-Asiacrypt 2005,2005, pp.533-548.
    [39]Wei L, Liu J. Shorter verifier-local revocation group signature with backward unlinkability. Pairing-Based Cryptography-Pairing 2010. Springer Berlin Heidelberg,2010, pp.136-146.
    [40]Chen Z, Wang J, Wang Y, et al. An efficient revocation algorithm in group signatures, Information Security and Cryptology-ICISC 2003. Springer Berlin Heidelberg,2004:pp.339-351.
    [42]Zhang J L, Wang Y M. Efficient membership revocation in ACJT group signature [J]. Journal of Electronic Science and Technology of China,6(1),2008, pp. 39-42.
    [44]Camenisch J. Lysyanskaya A. Dynamic accumulators and application to efficient revocation of anonymous credentials. Advances in Cryptology-CRYPTO 2002. Springer-Verlag, Berlin,2005, pp.468-480.
    [47]Chu C K, Liu J K, Huang X, et al. Verifier-local revocation group signatures with time-bound keys. Proceedings of the 7th ACM Symposium on Information, Computer and Communications Security. ACM,2012, pp.26-27.
    [48]Libert B, Vergnaud D. Group signatures with verifier-local revocation and backward unlinkability in the standard model. Cryptology and Network Security. Springer, Berlin Heidelberg,2009, pp.498-517.
    [50]Chaum D. Blind signature for untraceable payments. Proc. Crypto'82. New York: Plenum Press,1983, pp.199-203.
    [52]Chien H Y, Jan J K, Tseng Y M. RSA-based partially blind signature with low computation. Parallel and Distributed Systems,2001. ICPADS 2001. Proceedings. Eighth International Conference on. IEEE,2001, pp.385-389.
    [53]Chow S, Hui L, Yiu S, et al. Two improved partially blind signature schemes from bilinear pairings. Information Security and Privacy. Springer Berlin/ Heidelberg,2005, pp.355-411.
    [54]Jena D, Jena S K, Majhi B. A novel untraceable blind signature based on elliptic curve discrete logarithm problem. International Journal of Computer Science and Network Security,7(6),2007, pp.269-275.
    [55]Zhang L, Zhang F. Certificateless signature and blind signature. Journal of Electronics,25(5),2008, pp.629-635.
    [56]温晓军,田原,牛夏牧.一种基于秘密共享的量子强盲签名协议.电子学报, 38(3),2010,pp.720-724.
    [57]Sarde P, Banerjee A. A secure and efficient of some new blind signature, proxy and partial blind signature scheme based on discrete logarithm problem. IJECCE, 3(3),2012, pp.406-409.
    [58]Zhang M, Xu G A, Chen X B, et al. Attack on the Improved Quantum Blind Signature Protocol. International Journal of Theoretical Physics,2012, pp.1-5.
    [59]Rivest R, Shamir A, Tauman Y. How to leak a secret. Advances in Cryptology-ASIACRYPT 2001,2001, pp.552-565.
    [61]Bender A, Katz J, Morselli R. Ring signatures:Stronger definitions, and constructions without random oracles. Theory of Cryptography,2006, pp.60-79.
    [62]Chow S S M, Wei V K, Liu J K, et al. Ring signatures without random oracles. Proc of the 2006 ACM Symposium on Information, computer and communications security. ACM,2006, pp.297-302.
    [66]Desmedt Y, Frankel Y. Shared generation of authenticators and signatures. Advances in Cryptology-CRYPTO'91. Springer Berlin/Heidelberg,1992, pp. 457-469.
    [69]Kang B, Boyd C, Dawson E. A novel nonrepudiable threshold multi-proxy multi-signature scheme with shared verification. Computers & Electrical Engineering,35(1),2009, pp.9-17.
    [71]周萍,何大可.一种CDH难题的强壮门限盲签名方案设计.计算机应用研究, 28(2),2011,pp.704-707.
    [73]Gong Bei, Jiang Wei, Lin Li et al. Threshold Ring Signature Scheme Based on TPM. China Communications,9(1),2012, pp.80-85.
    [74]Aguilar Melchor C, Cayrel P, Gaborit P, et al. A new efficient threshold ring signature scheme based on coding theory. Information Theory, IEEE Transactions on,57(7),2011, pp.4833-4842.
    [76]Tao Y, Yang Y, Li Z, et al. Multivariate threshold group signature scheme withstanding conspiracy attack. Intelligent Control, Automatic Detection and High-End Equipment (ICADE),2012 IEEE International Conference on. IEEE, 2012, pp.114-118.
    [77]Wang X, Dong Y. Threshold group signature scheme with privilege subjects based on ECC. Communications and Intelligence Information Security (ICCIIS), 2010 International Conference on. IEEE,2010, pp.84-87.
    [78]Xie Q, Yu X Y. A new (t,n) threshold signature scheme withstanding the conspiracy attack. Wuhan University Journal of Natural Sciences.10(1),2005, pp. 107-110.
    [79]Xu Q L, Chen T S. An efficient threshold RSA digital signature scheme. Applied mathematics and computation,166(1),2005, pp.25-34.
    [80]Zhang W, He D, Wang H, et al. Conspiracy attack immune (t, n) threshold signature scheme with traceability [J]. Journal of Southwest Jiaotong University, 42(4),2007, pp.461-467.
    [83]Pointcheval D, Stern J. Security arguments for digital signatures and blind signatures. Journal of cryptology,13(3),2000, pp.361-396.
    [84]Shum K, Wei Victor K. A strong proxy signature scheme with proxy signer privacy protection, Proc of the 11th IEEE international workshops on Enabling Technologies:infrastructure for collaborative Enterprise,2002, pp.55-56.
    [85]Lee N Y, Lee M F. The security of a strong proxy signature scheme with proxy signer privacy protection. Applied mathematics and computation,161(3),2005, pp.807-812.
    [87]Yu Y, Xu C, Huang X, et al. An efficient anonymous proxy signature scheme with provable security. Computer Standards & Interfaces,31(2),2009, pp.348-353.
    [88]Juang W S, Lei C L, Chang C Y. Anonymous channel and authentication in wireless communications. Computer Communications,22(15),1999, pp.1502-1511.
    [90]He Q, Wu D, Khosla P. The quest for personal control over mobile location privacy [J]. IEEE Communications Magazine,42(5),2004, pp.130-136.
    [91]Zhu Jian-Ming, Ma Jian-Feng. A new authentication scheme with anonymity for wireless environment. IEEE Transactions on Consumer Electronic,50(1),2004, pp.231-235.
    [92]Jiang Y, Lin C, Shen X, et al. Mutual authentication and key exchange protocols for roaming services in wireless mobile networks. Wireless Communications, IEEE Transactions on,5(9),2006, pp.2569-2577.
    [93]Lee J S, Chang J H. Security flaw of authentication scheme with anonymity for wireless communications. IEEE Communications Letters,13(5),2009, pp. 292-293.
    [94]Li Kun, Xiu Anna, He Fei, et al. Anonymous authentication with unlinkability for wireless environments. IEICE Electronics Express,8(8),2011, pp.536-541.
    [95]Tang Caimu Wu D O. An efficient mobile authentication scheme for wireless networks. IEEE Transactions on Wireless communications,7(4) 2008, pp. 1408-1416.
    [97]Fu Xiaotong, Kou Weidong, Xiao Guozhen. A proxy signature scheme with proxy signer's privacy anonymity. Proc of IEEE International Conference on E-Commerce Technology for Dynamic E-Business,2004, pp.257-260.
    [98]Huang X, Susilo W, Mu Y, et al. Proxy signature without random oracles. Mobile Ad-hoc and Sensor Networks. Springer, Berlin Heidelberg,2006, pp.473-484.
    [99]Boldyreva A, Palacio A, Warinschi B. Secure proxy signature schemes for delegation of signing rights,2003.
    [100]Chou J S. A novel anonymous proxy signature scheme. Advances in Multimedia, 2012, pp.1-10.
    [101]Bellare M, Rogaway P, Random oracles are practical:A paradigm for designing efficient protocols, Proceeding of the 1st ACM Conference on Computer and Communications Security. ACM, New York,1993, pp.62-73.
    [102]Pointcheval D, Stern J. Security arguments for digital signature and blind signature. Journal of Cryptology,13(3),2000, pp.361-396.
    [103]Sun H M. Design of time-stamped proxy signatures with traceable receivers. Computers and Digital Techniques, IEE Proceedings-IET Design of time-stamped proxy signatures with traceable receivers,147(6),2000, pp.462-466.
    [104]Das M L, Saxena A, Gulati V P. An efficient proxy signature scheme with revocation. Informatica,15(4),2004, pp.455-464.
    [105]Seo S H, Shim K A, Lee S H. A mediated proxy signature scheme with fast revocation for electronic transactions. Proceedings of 2nd International Conference on Trust, Privacy and Security in Digital Business. Springer-Verlag, Berlin,2005, pp.216-225.
    [107]Liu Z, Hu Y, Zhang X, et al. Secure proxy signature scheme with fast revocation in the standard model. The Journal of China Universities of Posts and Telecommunications,16(4),2009, pp.116-124.
    [108]Ying Sun, Chunxiang Xu, Yong Yu, et al. Strongly unforgeable proxy signature scheme secure in the standard model [J], The Journal of Systems and Software, 84(9),2011, pp.1471-1479.
    [110]Sun Ying, Xu Chunxiang, Yu Yong et al. Strongly unforgeable proxy signature scheme secure in the standard model, The Journal of Systems and Software,84(9), 2011, pp.1471-1479.
    [111]Mun Hyeran, Han Kyusuk, Lee Yan Sun, et al. Enhanced secure anonymous authentication scheme for roaming service in global mobility networks. Mathematical and Computer Modelling,55(1),2012. pp.214-222.
    [113]Li C M, Hwang T, Lee N Y. Remark on the threshold RSA signature scheme. Advances in Cryptology-CRYPTO'93, Springer Berlin Heidelberg,1994, pp. 413-419.
    [114]Li Z C, Zhang J M, Luo J. Group-oriented (t, n) threshold digital signature schemes with traceable signers. Topics in Electronic Commerce Technologies (ISEC2001), LNCS 2040. Springer, Berlin,2001, pp.57-69.
    [116]Xie Qi, Yu Xiu-yuan. A new (t,n) threshold signature scheme withstanding the conspiracy attack [J]. Wuhan University Journal of Natural Sciences,10(1), 2005, pp.107-110.
    [118]高炜,于晓东.对一个无可信中心的(t,n)门限签名方案的改进.计算机学报,46(1),2010 pp.84-86.
    [120]Gan Yuan-ju. Verifiable threshold signature schemes against conspiracy attack. Journal of Zhejiang University Science,5(1),2004, pp.50-54.
    [123]Liu Jenshiun, Huang Shaonong. Identity-Based threshold proxy signature from bilinear pairings, Informatica, Inst, Math&Science,21(1),2010, pp.41-56.
    [124]E. Bresson, J. Stern. Efficient revocation in group signatures. In PKC'2001, volume 1992 of LNCS, Springer-Verlag,2001, pp:190-206.
    [126]JIN H M, WONG S D, XU Y L. Efficient group signature with forward secure revocation. Proceedings of International Conference on Security Technology. Jeju Island, Korea,2009. Pp.124-131.
    [127]FAN C I., HSU R H., MANULIS M. Group signature with constant revocation costs for signers and verifiers. The 10th International Conference on Cryptology and Network Security (CANS 2011), Sanya, China,2011, pp.214-233.
    [128]Libert B, Peters T, Yung M. Scalable group signatures with revocation. Eurocrypt'12 [C]. Cambridge, UK,2012, pp.609-627.
    [129]Fujisaki E, Okamoto T. Statistical zero knowledge protocols to prove modular polynomial relations. Cryptology-CRYPTO'97:17th Annual International Cryptology Conference. California USA,1997, pp.16-30.
    [139]Boudot f. Efficient proofs that a committed number lies in an interval. Proceedings of EUROCRYPT'2000, Spring-Verlag, Berlin,2000, pp.431-444.
    [131]Chaum D, Evertse J H, Graaf J. An improved protocol for demonstrating possession of discrete logarithm and some generalizations. Proceedings of EUROCRYPT'87. Spring-Verlag, Berlin,1988, pp.127-141.
    [132]Petersen H. How to convert any digital signature scheme into a group signature scheme. In:Lomas M, Vaudenay M, eds.Proceedings of the Security Protocols Workshop'97. LNCS 1361, Berlin:Springer-Verlag,1997, pp.67-78.