摘要
针对目前基于格的签密方案尚不能满足前向安全性,提出一个具有前向安全的基于身份的签密方案。首先,该方案利用格基授权算法对用户和发送者的公私钥对进行更新;其次,结合基于格上错误学习问题的原像采样算法进行用户签名,并利用包含签名信息的哈希值对消息进行加密。在随机预言机模型下,证明该方案是适应性选择身份和选择密文攻击安全(IND-s ID-CCA2)和强不可伪造选择消息攻击安全(s UF-CMA)的,同时证明了该方案具有前向安全性。相对于基于配对的签密方案,所提方案在计算速度和密文扩展率的优势都较为明显。
To solve the problem that current signcryption schemes based on lattice cannot achieve forward security, a new identity-based signcryption scheme with forward security was proposed. Firstly, lattice basis delegation algorithm was used to update the users' public keys and private keys. Then, the preimage sampleable functions based on Learning With Errors (LWE) over lattice was used to sign the message, and the signature was also used to encrypt the message. The scheme was proved to be adaptive INDistinguishiability selective IDentity and Chosen-Ciphertext Attack (IND-sID-CCA2) secure, strong UnForgeable Chosen-Message Attack (sUF-CMA) secure and forward secure. Compared with the signcryption schemes based on pairings, the proposed scheme has more advantages in computational efficiency and ciphertext extension rate.
出处
《计算机应用》
CSCD
北大核心
2016年第11期3077-3081,3087,共6页
journal of Computer Applications
基金
国家自然科学基金资助项目(61272492
61572521)
陕西省自然科学基础研究计划项目(2015JM8300)
武警工程大学基础研究项目(WJY201422
WJY201523)~~
关键词
前向安全
基于身份加密
错误学习
格基授权
选择密文攻击
forward secure
identity-based encryption
Learning With Errors (LWE)
lattice basis delegation
chosen ciphertext attack
