信息网络安全 ›› 2019, Vol. 19 ›› Issue (1): 42-50.doi: 10.3969/j.issn.1671-1122.2019.01.006

• 技术研究 • 上一篇    下一篇

可证安全的高效无证书聚合签名方案

曹素珍, 郎晓丽(), 刘祥震, 王斐   

  1. 西北师范大学计算机科学与工程学院,甘肃兰州 730070
  • 收稿日期:2018-08-10 出版日期:2019-01-20 发布日期:2020-05-11
  • 作者简介:

    作者简介:曹素珍(1976—),女,甘肃,副教授,硕士,主要研究方向为公钥密码学和软件安全;郎晓丽(1993—),女,山东,硕士研究生,主要研究方向为密码学与信息安全;刘祥震(1991—),男,山东,硕士研究生,主要研究方向为密码学与信息安全;王斐(1992—),女,山东,硕士研究生,主要研究方向为密码学与信息安全。

  • 基金资助:
    国家自然科学基金[61662071, 61662069, 61462077]

Probably Secure and Efficient Certificateless Aggregate Signature Scheme

Suzhen CAO, Xiaoli LANG(), Xiangzhen LIU, Fei WANG   

  1. College of Computer Science and Engineering, Northwest Normal University, Lanzhou Gansu 730070, China
  • Received:2018-08-10 Online:2019-01-20 Published:2020-05-11

摘要:

无证书密码体制下所有实体中的私钥一部分由密钥生成中心(KGC)生成,另一部分由用户自己生成,因此解决了密钥托管的问题,同时还减轻了对证书管理的负担。聚合签名方案提高了对签名的验证效率,同时减少了通信时签名的长度。文章首先对一个高效的无证书聚合签名方案进行安全性分析,指出该方案不满足不可伪造性,即恶意的KGC可以通过被动攻击伪造有效的聚合签名并通过验证。为了提高聚合签名方案的安全性,文章提出了一个可证安全的高效无证书聚合签名方案。该方案不需要双线性对运算,并克服了现有方案存在的安全问题。该方案在随机预言机模型下基于计算性Diffie-Hellman困难问题,实现了在自适应性选择消息攻击下的不可伪造性。与现有方案相比,本文方案在提高安全性的同时大大降低了计算开销。

关键词: 无证书, 聚合签名, 恶意KGC, 高效

Abstract:

The private key of all entities in the certificateless cryptosystem is generated by the key generation center (KGC) and the other part is generated by the user. This solves the problem of key escrow and reduces the burden of certificate management. The aggregate signature scheme improves the verification efficiency of signatures and also saves the length of signatures during communication. This paper first analyzes the security of an efficient certificateless aggregation signature scheme, and points out that the scheme does not satisfy the unforgeability. The malicious KGC can perform passive attacks, forge a valid aggregate signature and pass verification. In order to improve the security of the original scheme, this paper proposes a valid and efficient certificateless aggregation signature scheme. The new scheme does not require bilinear operation and overcomes the security problems of the original scheme. Based on the computational Diffie-Hellman problem, the improved new scheme is proved to be adaptive message attack unforgeable under the random oracle model. Compared with origin scheme, the proposal scheme is more secure and the total computational cost is greatly reduced.

Key words: certificateless, aggregate signature, malicious KGC, efficiency

中图分类号: