摘要
无证书密码体制下所有实体中的私钥一部分由密钥生成中心(KGC)生成,另一部分由用户自己生成,因此解决了密钥托管的问题,同时还减轻了对证书管理的负担。聚合签名方案提高了对签名的验证效率,同时减少了通信时签名的长度。文章首先对一个高效的无证书聚合签名方案进行安全性分析,指出该方案不满足不可伪造性,即恶意的KGC可以通过被动攻击伪造有效的聚合签名并通过验证。为了提高聚合签名方案的安全性,文章提出了一个可证安全的高效无证书聚合签名方案。该方案不需要双线性对运算,并克服了现有方案存在的安全问题。该方案在随机预言机模型下基于计算性Diffie-Hellman困难问题,实现了在自适应性选择消息攻击下的不可伪造性。与现有方案相比,本文方案在提高安全性的同时大大降低了计算开销。
The private key of all entities in the certificateless cryptosystem is generated by the key generation center (KGC) and the other part is generated by the user.This solves the problem of key escrow and reduces the burden of certificate management.The aggregate signature scheme improves the verification efficiency of signatures and also saves the length of signatures during communication.This paper first analyzes the security of an efficient certificateless aggregation signature scheme,and points out that the scheme does not satisfy the unforgeability.Tlie malicious KGC can perform passive attacks,forge 社 valid aggregate signature and pass verification.In order to improve the security of the original scheme,this paper proposes a valid and efficient certificateless aggregation signature scheme.The new scheme does not require bilinear operation and overcomes the security problems of the original scheme.Based on the computational Diffie-Hellman problem,the improved new scheme is proved to be adaptive message attack unforgeable under the random oracle model.Compared with origin scheme,the proposal scheme is more secure and the total computational cost is greatly reduced.
作者
曹素珍
郎晓丽
刘祥震
王斐
CAO Suzhen;LANG Xiaoli;LIU Xiangzhen;WANG Fei(College of Computer Science and Engineering,Northwest Normal University,Lanzhou Gansu 730070,China)
出处
《信息网络安全》
CSCD
北大核心
2019年第1期42-50,共9页
Netinfo Security
基金
国家自然科学基金[61662071
61662069
61462077]
关键词
无证书
聚合签名
恶意KGC
高效
certificateless
aggregate signature
malicious KGC
efficiency
