Generic Certificateless Encryption Secure Against Malicious-but-Passive KGC Attacks in the Standard Model 被引量：6

Generic Certificateless Encryption Secure Against Malicious-but-Passive KGC Attacks in the Standard Model

导出

摘要 Despite the large number of certificateless encryption schemes proposed recently, many of them have been found insecure under a practical attack, called malicious-but-passive KGC （Key Generation Center） attack. In this work we propose the first generic construction of certificateless encryption, which can be proven secure against malicious-but- passive KGC attacks in the standard model. In order to encrypt a message of any length, we consider the KEM/DEM （key encapsulation mechanism/data encapsulation mechanism） framework in the certificateless setting, and propose a generic construction of certificateless key encapsulation mechanism （CL-KEM） secure against malicious-but-passive KGC attacks in the standard model. It is based on an identity-based KEM, a public key encryption and a message authentication code. The high efficiency of our construction is due to the efficient implementations of these underlying building blocks, and is comparable to Bentahar et al.＇s CL-KEMs, which have only been proven secure under the random oracle model with no consideration of the malicious-but-passive KGC attack. We also introduce the notion of certificateless tag-based KEM （CL-TKEM）, which is an extension of Abe et al.＇s work to the certificateless setting. We show that an efficient CL-TKEM can be constructed by modifying our CL-KEM scheme. We also show that with a CL-TKEM and a data encapsulation mechanism secure under our proposed security model, an efficient certificateless hybrid encryption can be constructed by applying Abe et al.＇s transformation in the certificateless setting. Despite the large number of certificateless encryption schemes proposed recently, many of them have been found insecure under a practical attack, called malicious-but-passive KGC （Key Generation Center） attack. In this work we propose the first generic construction of certificateless encryption, which can be proven secure against malicious-but- passive KGC attacks in the standard model. In order to encrypt a message of any length, we consider the KEM/DEM （key encapsulation mechanism/data encapsulation mechanism） framework in the certificateless setting, and propose a generic construction of certificateless key encapsulation mechanism （CL-KEM） secure against malicious-but-passive KGC attacks in the standard model. It is based on an identity-based KEM, a public key encryption and a message authentication code. The high efficiency of our construction is due to the efficient implementations of these underlying building blocks, and is comparable to Bentahar et al.＇s CL-KEMs, which have only been proven secure under the random oracle model with no consideration of the malicious-but-passive KGC attack. We also introduce the notion of certificateless tag-based KEM （CL-TKEM）, which is an extension of Abe et al.＇s work to the certificateless setting. We show that an efficient CL-TKEM can be constructed by modifying our CL-KEM scheme. We also show that with a CL-TKEM and a data encapsulation mechanism secure under our proposed security model, an efficient certificateless hybrid encryption can be constructed by applying Abe et al.＇s transformation in the certificateless setting.

作者黄琼王石

机构地区 Department of Computer Science

出处《Journal of Computer Science & Technology》 SCIE EI CSCD 2010年第4期807-826,共20页 计算机科学技术学报（英文版）

基金 supported by City Uunder Grant No.7002362

关键词 certificateless encryption malicious-but-passive KGC attack standard model key encapsulation mechanism certificateless encryption, malicious-but-passive KGC attack, standard model, key encapsulation mechanism

分类号 TN918.2 [电子电信—通信与信息系统]

引文网络
相关文献

参考文献50

1Huang Q, Wong D S. Generic certificateless key encapsulation mechanism. In Proc. ACISP 2007, Townsville, Australia, July 2-4, 2007, pp.215-229.
2Huang Q, Wong D S. Generic certificateless encryption in the standard model. In Proc. IWSEC 2007, Nara, Japan, Oct. 29-31, 2007, pp.278-291.
3Shamir A. Identity-based cryptosystems and signature schemes. In Proc. CRYPT01984, Santa Barbara, USA,Aug. 16-20, 1984, pp.47-53.
4Al-Riyami S S, Paterson K G. Certificateless public key cryptography. In Proc. ASIACRYPT 2003, Taipei, China, Nov. 30-Dec. 4, 2003, pp.452-473.
5Yum D H, Lee P J. Generic construction of certificateless sig- nature. In Proc. ACISP 2004, Sydney, Australia, July 13-14, 2004, pp.200-211.
6Huang X, Susilo W, Mu Y, Zhang F. On the security of certificateless signature schemes from Asiacrypt 2003. In Proc. CANS 2005, Xiamen, China, Oct. 31-Nov. 3, 2005, pp.13-25.
7Libert B, Quisquater J J. On constructing certificateless cryptosystems from identity based encryption. In Proc. PKC 2006, New York, USA, April 24-26, 2006, pp.474-490.
8Hu B C, Wong D S, Zhang Z, Deng X. Key replacement attack against a generic construction of certificateless signature. In Proc. ACISP 2006, Melbourne, Australia, July 3-5, 2006, pp.235-246.
9Au M H, Chen J K, Liu J K, Mu Y, Wong D S, Yang G. Malicious KGC attacks in certificateless cryptography. In Proc. ASIACCS 2007, Singapore, Mar. 20-22, 2007, pp.302-311.
10Liu J K, Au M H, Susilo W. Self-generated-certificate public key cryptography and certificateless signaturc/encryption scheme in the standard model. In Proc. ASIACCS 2007, Singapore, Mar. 20-22, 2007, pp.302-311.

同被引文献46

1AL-RIYAMI S, PATERSON K. Certificateless public key cryptography [ C ]//LNCS, vol 2894. Berlin : Springer-Verlag ,2003:452- 473.
2ZHANG Lei, ZHANG Fu-tai, WU Wei. A provably secure ring signature scheme in certificateless cryptography [ C ]//LNCS, vol 4784. Berlin : Springer-Verlag,2007 : 103-121.
3POINTCHEVAL D,STERN J. Security arguments for digital signatures and blind signatures [J]. ,Journal of Cryptolo0y,2000,33(3):361-396.
4Cramer R,Shoup V.Design and analysis of practical public-key encryption schemes secure against adaptive chosen ciphertext attack[J].SIAM Journal on Computing,2004,33(1):167-226.
5Abe M,Gennaro R,Kurosawa K.Tag-KEM/DEM:a new framework for hybrid encryption[J].Journal of Cryptology,2008(21):97-130.
6Kurosawa K,Desmedt Y.A new paradigm of hybrid encryption scheme[C]//Proceedings of the 24th Annual International CryptologyConference.Santa Barbara,California,USA,2004:426-442.
7Fujisaki E,Okamoto T.Secure integration of asymmetric and symmetric encryption schemes[C]//Proceedings of CRYPTO’99,Lecture Notes in Computer Science Volume 1666,1999:537-554.
8赖欣.混合密码体制的理论研究与方案设计[D].西安:西安交通大学,2005.
9Dent A.Hybrid signcryption schemes with insider security[C]//Proceedings ofthe 10th Australasian Conference on Information Security and Privacy,Lecture Notes in Computer ScienceVolume 3574,Brisbane,Australia,2005:253-266.
10Dent A.Hybrid signcryption schemes with outsider security[C]//Proceedings ofthe 8th International Information Security Conference,Lecture Notes in Computer ScienceVolume3650,Singapore,2005:203-217.

引证文献6

1陈虎,魏仕民,朱昌杰,宋万干.可追踪的无证书多级代理签名方案[J].计算机应用研究,2013,30(6):1835-1839.
2Lin CHENG Qiaoyan WEN Zhengping JIN Hua ZHANG.Cryptanalysis and improvement of a certificateless encryption scheme in the standard model[J].Frontiers of Computer Science,2014,8(1):163-173. 被引量：1
3俞惠芳,杨波.可证安全的无证书混合签密[J].计算机学报,2015,38(4):804-813. 被引量：26
4俞惠芳,杨波,张文政.混合签密综述[J].西安邮电大学学报,2015,20(3):1-10. 被引量：4
5王艳,王慧.基于快速Spark人工智能架构的大数据挖掘算法[J].黑龙江工业学院学报（综合版）,2018,18(5):85-89. 被引量：7
6龙睿.基于人工智能的电商大数据分类与挖掘算法[J].现代电子技术,2020,43(14):170-172. 被引量：2

二级引证文献38

1俞惠芳,杨波,张文政.混合签密综述[J].西安邮电大学学报,2015,20(3):1-10. 被引量：4
2刘建华,赵长啸,毛可飞.高效的无证书聚合签密方案[J].计算机工程与应用,2016,52(12):131-135. 被引量：7
3刘建华,毛可飞,胡俊伟.基于双线性对的无证书聚合签密方案[J].计算机应用,2016,36(6):1558-1562. 被引量：3
4刘景伟,张俐欢,孙蓉.异构系统下的双向签密方案[J].电子与信息学报,2016,38(11):2948-2953. 被引量：17
5周彦伟,杨波,王青龙.可证安全的抗泄露无证书混合签密机制[J].软件学报,2016,27(11):2898-2911. 被引量：8
6周才学.几个签密方案的密码学分析与改进[J].计算机工程与科学,2016,38(11):2246-2253. 被引量：9
7周彦伟,杨波,王青龙.安全的无双线性映射的无证书签密机制[J].软件学报,2017,28(10):2757-2768. 被引量：16
8祁正华,王翔.高效的无证书混合环签密[J].南京邮电大学学报（自然科学版）,2018,38(1):98-105. 被引量：2
9李超,肖明清,王矗,陈永龙,张磊,唐希浪.基于SRCSM的装备无线分布式测试系统数据加密传输[J].空军工程大学学报（自然科学版）,2018,19(2):72-78. 被引量：1
10牛淑芬,杨喜艳,王彩芬,田苗,贾向东.基于异构密码系统的混合盲签密方案[J].计算机工程,2018,44(8):151-154. 被引量：3

1Lin CHENG Qiaoyan WEN Zhengping JIN Hua ZHANG.Cryptanalysis and improvement of a certificateless encryption scheme in the standard model[J].Frontiers of Computer Science,2014,8(1):163-173. 被引量：1
2李建设,卢辉斌,陈淑清,徐天赋.电子政务系统安全的框架性解决方案[J].计算机工程与设计,2007,28(14):3486-3488. 被引量：15
32015款CC:领先科技打造越级安全标准[J].新民周刊,2014,0(41):87-87.
4钟红君.探析C++类的数据封装机制[J].电脑编程技巧与维护,2009(24):22-23.
5KANG Baoyuan,WANG Mu,JING Dongya.An Efficient Certificateless Aggregate Signature Scheme[J].Wuhan University Journal of Natural Sciences,2017,22(2):165-170. 被引量：4
6SUN Yinxia,ZHANG Futai.Secure Certificateless Encryption with Short Ciphertext[J].Chinese Journal of Electronics,2010,19(2):313-318. 被引量：2
7GU Ke,JIA Weijia,CHEN Rongyuan,LIU Xingbao.Secure and Efficient Proxy Signature Scheme in the Standard Model[J].Chinese Journal of Electronics,2013,22(4):666-670. 被引量：1
8周志飞.软件产品安全性概念误区及常见问题分析[J].机车电传动,2014(5):6-11. 被引量：1
9郑守俊,袁中凡.基于MSC.DYTRAN的安全气囊性能仿真分析[J].中国科技信息,2008(24):94-95. 被引量：1
10MING Yang,SHEN Xiao-qin,WANG Yu-min.Identity-based encryption with wildcards in the standard model[J].The Journal of China Universities of Posts and Telecommunications,2009,16(1):64-68. 被引量：3

Journal of Computer Science & Technology

2010年第4期

浏览历史

内容加载中请稍等...

Generic Certificateless Encryption Secure Against Malicious-but-Passive KGC Attacks in the Standard Model 被引量：6

参考文献50

同被引文献46

引证文献6

二级引证文献38

相关作者

相关机构

相关主题

浏览历史