摘要
由于移动互联网络的快速发展,如何保障签名过程中用户私钥在不安全的环境中不被泄露,成为倍受关注的问题。为了降低密钥泄露带来的危害,密钥隔离成为核心解决方法之一。文献[8]提出了一个基于身份的密钥隔离签名方案,并且在标准模型下证明了该方案的安全性。但在实际应用中文献[8]的方案是存在密钥托管问题的。为了弥补文献[8]中基于身份方案的不足,提出了一种无证书的密钥隔离签名方案。该方案不仅具有基于身份密钥隔离签名方案的核心功能,而且解决了基于身份密钥隔离签名方案中存在的密钥托管问题。
With the fast development of the Mobile Internet,an open challenge is to keep the users’private key from being leaked in the unsafe environment.The key-insulated signature scheme is one of the promising methods of reducing the risk of the private key leakage.An identity-based key-insulated signature scheme was proposed in Reference [8 ], which is proved to secure in the standard model.But identity-based cryptography exists a key escrow problem in the practical applications.To solve this problem,a certificateless key-insulated signature scheme was proposed.It not only keeps the traditional functions of key-insulated signature scheme but also solves the key escrow problem in identity-based key-insulated signatures.
出处
《山东大学学报(理学版)》
CAS
CSCD
北大核心
2014年第9期24-28,共5页
Journal of Shandong University(Natural Science)
基金
国家自然科学基金资助项目(61272451
61173154
61100221)
关键词
密钥隔离
无证书密钥系统
密钥托管
密钥泄露
key-insulation
certificateless public key cryptography
key escrow
key leakage
