摘要
无证书广义指定验证者聚合签名机制不仅能够解决证书管理和密钥托管问题,而且能够实现批验证和保护签名者的隐私。在资源受限的无线移动网络中有广泛应用。首先,对一种指定验证者聚合签名方案进行安全性分析,通过给出2种具体攻击方法,指出该方案不满足签名不可伪造性。为了增强安全性,提出一种新的无证书广义指定验证者聚合签名方案,并在随机预言机模型下证明该方案是安全的。与原方案相比,新方案在解决安全缺陷的同时大大降低了计算开销。
Certificateless aggregate signature(CLAS) schemes with universal designated verifier had been widely applied in resource-constrained wireless mobile networks, because they could not only solve the problems of the certificate man-agement and private key escrow, but also realize batch validation and the signer’s privacy protection. A security analysis for a certificateless aggregate signature scheme with universal designated verifier was firstly provided, and two attack methods to demonstrate that their scheme was forgeable was presented. To enhance security, a new certificateless aggre-gate signature scheme with universal designated verifier was proposed, and then the security of the scheme in the random oracle model was proved. The performance of our proposed scheme was finally evaluated. Compared with the original scheme, the pvoposed scheme fixes the security flaws and the total computational cost is greatly reduced .
出处
《通信学报》
EI
CSCD
北大核心
2017年第11期76-83,共8页
Journal on Communications
基金
国家自然科学基金资助项目(No.61501333
No.61572379
No.61472287)
湖北省自然科学基金资助项目(No.2015CFA068)
武汉科技计划基金资助项目(No.2016060101010047)~~
关键词
安全分析
指定验证者
无证书聚合签名
抗伪造攻击
cryptanalysis, universal designated verifier, certificateless aggregate signature, resist forgery attack
