摘要
无证书广义签密方案不仅可以解决证书管理和密钥托管问题,而且可以根据实际需求分别作为加密方案、签名方案或签密方案,在资源受限的物联网环境中具有广泛的应用场景。但是,通过具体的攻击方法证明Karati等的方案不能抵抗伪造攻击,文中总结了攻击者成功伪造的原因。针对上述问题,提出了一种无双线性配对的无证书广义签密方案,并在随机预言模型下基于计算性Diffie-Hellman问题和离散对数问题对该方案进行了安全性证明。性能评估结果表明,与现有方案相比,该方案在计算代价及通信开销方面具有优势,适用于资源受限的物联网设备之间数据的安全传输。
Certificateless generalized signcryption(CLGSC)scheme has been widely applied in resource-limited IoT environments for they could not only solve the problems of the certificate management and key escrow,but also serve as encryption,signature,or signcryption scheme according to the security requirements of the network.Firstly,concrete attacks are given to prove that Karati’s scheme could not resist forgery attacks.This paper analyzes the essential reason why the adversaries can forge a valid signature or signcryption in CLGSC schemes.Then,an efficient certificateless generalized signcryption scheme without bilinear pairing is proposed.The proposed scheme is secure under the random oracle model based on the computational Diffie-Hellman problem and discrete logarithm problem.Finally,performance evaluation and comparison prove that the proposed scheme outperforms other CLGSC schemes in terms of computation cost,communication overhead and security functionalities.Therefore,the proposed scheme can provide the service of secure data transmission among resource-limited IoT devices.
作者
张振超
刘亚丽
殷新春
ZHANG Zhen-chao;LIU Ya-li;YIN Xin-chun(College of Information Engineering,Yangzhou University,Yangzhou,Jiangsu 225127,China;College of Computer Science and Technology,Jiangsu Normal University,Xuzhou,Jiangsu 221116,China;Guangling College,Yangzhou University,Yangzhou,Jiangsu 225128,China)
出处
《计算机科学》
CSCD
北大核心
2022年第3期329-337,共9页
Computer Science
基金
国家自然科学青年基金(61702237)
国家自然科学基金(61472343)
徐州市推动科技创新专项资金(KC18005)
江苏省自然科学青年基金(BK20150241)
江苏省高校自然科学基金(14KJB520010)
江苏师范大学博士科研启动(14XLR035)
江苏政府留学奖学金。
关键词
物联网
无证书广义签密
无双线性对
伪造攻击
可证明安全性
Internet of things
Certificateless generalized signcryption
No bilinear pairings
Forgery attack
Provable security
