摘要
利用同态函数所具有的同态性,对Horster,Michels和Petresen依靠单向函数提出的一种低通信消耗的认证加密方案进行安全分析,并给出一种已知明文的伪造攻击方法,得出在Horster,Michels和Petresen方案中,当单向函数是同态函数时,这种认证加密方案是不安全的.
By the character of homorphism function, the authors analyze the security of the authenticated encryption scheme, depended on the character of oneway function and proposed by Horster, Michels and Petresen, with low communication costs, and present a known plaintcryphertext attack method.At the end we get the conclusion that if the oneway function is homomorphism, the scheme is insecure.
出处
《北京邮电大学学报》
EI
CAS
CSCD
北大核心
1999年第3期60-62,共3页
Journal of Beijing University of Posts and Telecommunications
基金
国家自然科学基金
国家"863计划"资助
关键词
密钥学
数字签名
消息恢复
认证加密
cryptograph
digital signature
message recovery
authenticated encryption