可证安全的高效无证书聚合签名方案

doi:10.3969/j.issn.1671-1122.2019.01.006

信息网络安全 ›› 2019, Vol. 19 ›› Issue (1): 42-50.doi: 10.3969/j.issn.1671-1122.2019.01.006

可证安全的高效无证书聚合签名方案

曹素珍, 郎晓丽(), 刘祥震, 王斐

西北师范大学计算机科学与工程学院,甘肃兰州 730070

收稿日期:2018-08-10 出版日期:2019-01-20 发布日期:2020-05-11
作者简介:
作者简介：曹素珍（1976—）,女,甘肃,副教授,硕士,主要研究方向为公钥密码学和软件安全;郎晓丽（1993—）,女,山东,硕士研究生,主要研究方向为密码学与信息安全;刘祥震（1991—）,男,山东,硕士研究生,主要研究方向为密码学与信息安全;王斐（1992—）,女,山东,硕士研究生,主要研究方向为密码学与信息安全。
基金资助:
国家自然科学基金[61662071, 61662069, 61462077]

Probably Secure and Efficient Certificateless Aggregate Signature Scheme

Suzhen CAO, Xiaoli LANG(), Xiangzhen LIU, Fei WANG

College of Computer Science and Engineering, Northwest Normal University, Lanzhou Gansu 730070, China

Received:2018-08-10 Online:2019-01-20 Published:2020-05-11

摘要/Abstract

摘要：

无证书密码体制下所有实体中的私钥一部分由密钥生成中心（KGC）生成,另一部分由用户自己生成,因此解决了密钥托管的问题,同时还减轻了对证书管理的负担。聚合签名方案提高了对签名的验证效率,同时减少了通信时签名的长度。文章首先对一个高效的无证书聚合签名方案进行安全性分析,指出该方案不满足不可伪造性,即恶意的KGC可以通过被动攻击伪造有效的聚合签名并通过验证。为了提高聚合签名方案的安全性,文章提出了一个可证安全的高效无证书聚合签名方案。该方案不需要双线性对运算,并克服了现有方案存在的安全问题。该方案在随机预言机模型下基于计算性Diffie-Hellman困难问题,实现了在自适应性选择消息攻击下的不可伪造性。与现有方案相比,本文方案在提高安全性的同时大大降低了计算开销。

关键词: 无证书, 聚合签名, 恶意KGC, 高效

Abstract:

The private key of all entities in the certificateless cryptosystem is generated by the key generation center (KGC) and the other part is generated by the user. This solves the problem of key escrow and reduces the burden of certificate management. The aggregate signature scheme improves the verification efficiency of signatures and also saves the length of signatures during communication. This paper first analyzes the security of an efficient certificateless aggregation signature scheme, and points out that the scheme does not satisfy the unforgeability. The malicious KGC can perform passive attacks, forge a valid aggregate signature and pass verification. In order to improve the security of the original scheme, this paper proposes a valid and efficient certificateless aggregation signature scheme. The new scheme does not require bilinear operation and overcomes the security problems of the original scheme. Based on the computational Diffie-Hellman problem, the improved new scheme is proved to be adaptive message attack unforgeable under the random oracle model. Compared with origin scheme, the proposal scheme is more secure and the total computational cost is greatly reduced.

Key words: certificateless, aggregate signature, malicious KGC, efficiency

中图分类号:

TP309

曹素珍, 郎晓丽, 刘祥震, 王斐. 可证安全的高效无证书聚合签名方案[J]. 信息网络安全, 2019, 19(1): 42-50.

Suzhen CAO, Xiaoli LANG, Xiangzhen LIU, Fei WANG. Probably Secure and Efficient Certificateless Aggregate Signature Scheme[J]. Netinfo Security, 2019, 19(1): 42-50.

图/表 4

参考文献 15

[1]	CHEN Xiaofeng, WANG Yumin.A Survey of Public Key Cryptography[J].Journal on Communication,2004,25(8):109-118.
	陈晓峰,王育民. 公钥密码体制研究与进展[J].通信学报,2004,25(8):109-118.
[2]	SHAMIR A.Identity-based Cryptosystems and Signature Schemes[J]. Lecture Notes in Computer Science,1984,196(2):47-53.
[3]	AL-RIYAMI S,PATERSON K G.Certificateless Public Key Cryptography[C]//Springer. 9th International Conference on the Theory and Application of Cryptology and Information Security, January 2003, Heidelberg,Berlin. Berlin:Springer, 2003:452-473.
[4]	CHEN Yameng,CHENG Xiangguo,WANG Shuo,et al.Research on Certificateless Group Signature Scheme Based on Bilinear Pairings[J]. Netinfo Security,2017,17(3):53-58.
	陈亚萌,程相国,王硕,等. 基于双线性对的无证书群签名方案研究[J].信息网络安全,2017,17(3):53-58.
[5]	LI Xuan,WU Qicong.Application of Digital Signature and Encryption in Network Isolation[J]. Netinfo Security,2013,17(10):178-180.
	李旋,吴其聪. 数字签名与加密在网络隔离中的应用研究[J].信息网络安全,2013(10):178-180.
[6]	DAN B,GENTRY C,LYNN B,et al.Aggregate and Verifiably Encrypted Signatures from Bilinear Maps[J]. Lecture Notes in Computer Science,2003,2656(1):416-432.
[7]	DAI Hua.Digital Signature Verification Technology Application[J]. Netinfo Security,2010,10(11):40-42.
	戴华. 数字签名验证技术应用探究[J].信息网络安全,2010,10(11):40-42.
[8]	WANG Daxing,TENG Jikai.Probably Secure Cetificateless Aggregate Signature Algorithm for Vehicular Ad hoc Network[J].Journal of Electronics & Information Technology,2018,40(1):11-17.
	王大星,滕济凯.车载网中可证安全的无证书聚合签名算法[J].电子与信息学报,2018,40(1):11-17.
[9]	GONG Z,LONG Y,HONG X,et al.Practical Certificateless Aggregate Signatures from Bilinear Maps[C]//IEEE. Eighth Acis International Conference on Software Engineering, Artificial Intelligence, Networking, and Parallel/Distributed Computing, August 13, 2007, Qingdao, China. New York:IEEE,2007: 188-193.
[10]	NIE H,LI Y,CHEN W,et al.NCLAS: A Novel and Efficient Certificateless Aggregate Signature Scheme[J]. Security & Communication Networks,2016,9(16):3141-3151.
[11]	ZHANG Yulei, ZHOU Dongrui, LI Chenyi, et al.Certificateless-based Efficient Aggregate Signature Scheme with Universal Designated Verifier[J].Journal on Communication,2015,36(2):48-55.
	张玉磊,周冬瑞,李臣意,等. 高效的无证书广义指定验证者聚合签名方案[J].通信学报,2015,36(2):48-55.
[12]	XU Zhiyan, WU Libin, LI Li, et al.New Certificateless Aggregate Signature Scheme with Universal Designated Verifier[J].Journal on Communication,2017,38(11):76-83.
	许芷岩,吴黎兵,李莉,等. 新的无证书广义指定验证者聚合签名方案[J].通信学报,2017,38(11):76-83.
[13]	XUN Tiantian,YU Jia,YANG Guangyang,et al.Key-Insulated Certificateless Aggregate Signature[J].Acta Electronica Sinica,2016,44(5):1111-1116.
	寻甜甜,于佳,杨光洋,等.密钥隔离的无证书聚合签名[J].电子学报,2016,44(5):1111-1116.
[14]	XU Yan,HUANG Liusheng,TIAN Miaomiao,et al.A Provably Secure and Compact Certificateless Aggregate Signature Scheme[J].Acta Electronica Sinica,2016,44(8):1845-1850.
	许艳,黄刘生,田苗苗,等. 一种可证安全的紧致无证书聚合签名方案[J].电子学报,2016,44(8):1845-1850.
[15]	KANG Baoyuan,WANG Mu,JINGDongya. An Efficient Certificateless Aggregate Signature Scheme[J]. Wuhan University Journal of Natural Sciences,2017,22(2):165-170.

阶段	文献[15]方案	本文方案
签名阶段	2T_Ga+4T_Gm=13.574 ms	T_Gm=3.382 ms
聚合签名阶段	(n-1)T_Ga	0
聚合验证阶段	3nT_Ga+nT_Gm+4e=359.944 ms	(n+2)T_Ga+(n+1)T_Gm=343.928 ms

可证安全的高效无证书聚合签名方案

Probably Secure and Efficient Certificateless Aggregate Signature Scheme

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 4

参考文献 15

相关文章 7

编辑推荐

Metrics

本文评价

[1]	胡荣磊, 李文敬, 蒋华, 张昕然. 基于离散对数的无证书聚合签密方案[J]. 信息网络安全, 2019, 19(7): 42-49.
[2]	张玉磊, 刘祥震, 郎晓丽, 王彩芬. 云环境下基于无证书的多服务器可搜索加密方案[J]. 信息网络安全, 2019, 19(3): 72-80.
[3]	江明明, 赵利军, 王艳, 王保仓. 面向云数据共享的量子安全的无证书双向代理重加密[J]. 信息网络安全, 2018, 18(8): 17-24.
[4]	陈亚楠, 梅倩, 熊虎, 徐维祥. 适用于工业物联网的无证书并行密钥隔离签名[J]. 信息网络安全, 2018, 18(10): 1-9.
[5]	陈亚萌, 程相国, 王硕, 高明. 基于双线性对的无证书群签名方案研究[J]. 信息网络安全, 2017, 17(3): 53-58.
[6]	李发根;钟笛. 数字签密综述[J]. , 2011, 11(12): 0-0.
[7]	张雪峰. 并行技术在取证工作中的应用[J]. , 2010, (11): 0-0.