摘要
现存SM2数字签名研究已不能满足长期使用主私钥的安全。为更好保证成员私钥安全,结合两方共同签名与SM2算法,在现存方案的基础上加入强前向安全性,无可信中心,可避免可信中心权威欺诈与长期使用主私钥被窃取问题。该方案具有3个特点:前向安全性、后向安全性、无可信中心。方案需要两轮通信,线上两方各需要一次标量乘,保持高效率不变的同时,使得攻击者难以窃取成员密钥,更好保证成员长期使用密钥的安全性。
The existing research on SM2 digital signatures can no longer meet the security requirements of long-term use of the master private key.To better ensure the security of members’private keys,a strong forward security was added on the basis of the existing scheme by combining the two parties’co-signature and SM2 algorithm.There was no trusted center,avoiding the trusted center’s authority fraud and the long-term use of the master private key to be stolen.The scheme had three characteristics including forward security,backward safety and no trusted center.The scheme required two rounds of communication,and each party on the line needed a scalar multiplication.While keeping the efficiency unchanged,the scheme made it difficult for attackers to steal the member key,so as to better ensure the security of members’long-term use of the key.
作者
薛庆水
卢子譞
马海峰
高永福
谈成龙
孙晨曦
XUE Qing-shui;LU Zi-xuan;MA Hai-feng;GAO Yong-fu;TAN Cheng-long;SUN Chen-xi(School of Computer Science and Information Engineering,Shanghai Institute of Technology,Shanghai 201418,China)
出处
《计算机工程与设计》
北大核心
2024年第8期2290-2297,共8页
Computer Engineering and Design
基金
国家自然科学基金项目(61672350、61170227)
上海应用技术大学协同创新基金项目(39120K178038)
教育部人文社科基金项目(14YJA880033)
国家社会科学基金项目(16BGL003)。
