基于中国剩余定理的动态门限签名方案

doi:10.11772/j.issn.1001-9081.2017092242

计算机应用 ›› 2018, Vol. 38 ›› Issue (4): 1041-1045.DOI: 10.11772/j.issn.1001-9081.2017092242

基于中国剩余定理的动态门限签名方案

王岩, 侯整风, 章雪琦, 黄梦洁

合肥工业大学计算机与信息学院, 合肥 230009

收稿日期:2017-09-14 修回日期:2017-11-27 出版日期:2018-04-10 发布日期:2018-04-09
通讯作者: 王岩
作者简介:王岩(1993-),女,安徽阜阳人,硕士研究生,主要研究方向:秘密共享、门限签名;侯整风(1958-),男,安徽和县人,教授,硕士,主要研究方向:深度检测防火墙、门限秘密共享、网络安全协议。
基金资助:
国家自然科学基金资助项目（61572167）；安徽省自然科学基金资助项目（1608085MF141）。

Dynamic threshold signature scheme based on Chinese remainder theorem

WANG Yan, HOU Zhengfeng, ZHANG Xueqi, HUANG Mengjie

School of Computer and Information, Hefei University of Technology, Hefei Anhui 230009, China

Received:2017-09-14 Revised:2017-11-27 Online:2018-04-10 Published:2018-04-09
Supported by:
This work is partially supported by the National Natural Science Foundation of China (61572167), the Natural Science Foundation of Anhui Province (1608085MF141).

摘要/Abstract

摘要： 针对移动攻击，提出一种基于中国剩余定理（CRT）的动态门限签名方案。首先，成员交换影子产生各自的私钥和组公钥，然后由成员协作产生部分签名，最后通过部分签名合成签名。方案在签名过程中没有暴露组私钥，从而保证组私钥可重复使用；方案允许成员定期更新私钥，且组公钥不变，以保证更新前的签名仍然有效；此外，方案允许新成员加入，并保证老成员私钥和组私钥不会泄露。分析表明，该方案具有良好的前向安全性，能够有效地抵抗移动攻击；且理论分析和仿真实验结果表明，与基于Lagrange插值多项式方案相比，该方案更新时间消耗为常数级，时间效率较高。

关键词: 门限签名, 中国剩余定理, 移动攻击, 私钥更新, 成员加入

Abstract: To resist mobile attacks, a new dynamic threshold signature scheme based on Chinese Remainder Theorem (CRT) was proposed. Firstly, members exchanged their shadows to generate their private keys and the group public key. Secondly, a partial signature was generated by cooperation. Finally, the partial signature was used to synthesize the signature. The scheme does not expose the group private key in the signature process, so that the group private key can be reused. The members update their private keys periodically without changing the group public key to ensure that the signature is still valid before update. Besides, the scheme allows new members to join while keeping the old member's private keys and group private key unexposed. The scheme has forward security, which can resist mobile attacks effectively. Theoretical analysis and simulation results show that, compared with the proactive threshold scheme based on Lagrange interpolation, the updating time consumption of the proposed scheme is constant, therefore the scheme has time efficiency.

Key words: threshold signature, Chinese Remainder Theorem (CRT), mobile attack, private key update, member join

中图分类号:

TP309

王岩, 侯整风, 章雪琦, 黄梦洁. 基于中国剩余定理的动态门限签名方案[J]. 计算机应用, 2018, 38(4): 1041-1045.

WANG Yan, HOU Zhengfeng, ZHANG Xueqi, HUANG Mengjie. Dynamic threshold signature scheme based on Chinese remainder theorem[J]. Journal of Computer Applications, 2018, 38(4): 1041-1045.

参考文献

[1] SHAMIR A. How to share a secret[J]. Communications of the ACM, 1979, 22(11):612-613.
[2] 王洁,蔡永泉, 田有亮. 基于博弈论的门限签名体制分析与构造[J]. 通信学报, 2015, 36(5):1-8.(WANG J, CAI Y Q, TIAN Y L. Analysis and construction for threshold signature scheme based on game theory[J]. Journal on Communications, 2015, 36(5):1-8.)
[3] 曹阳. 基于秘密共享的数字签名方案[J]. 重庆邮电大学学报(自然科学版), 2015, 27(3):418-421.(CAO Y. Digital signature scheme based on secret sharing[J]. Journal of Chongqing University of Posts and Telecommunications (Natural Science Edition), 2015, 27(3):418-421.)
[4] DING K, DING C. A class of two-weight and three-weight codes and their applications in secret sharing[J]. IEEE Transactions on Information Theory, 2015, 11(61):5835-5842.
[5] ASMUTH C, BLOOM J. A modular approach to key safeguarding[J]. IEEE Transactions on Information Theory, 1983, 29(2):208-210.
[6] SHI N, HOU Z F, TAN M N, et al. A threshold encryption scheme without a dealer based on Chinese remainder theorem[C]//Proceedings of the 2017 IEEE 9th International Conference on Communication Software and Networks. Piscataway, NJ:IEEE, 2017:90-96.
[7] 徐甫, 马静谨. 基于中国剩余定理的门限RSA签名方案的改进[J]. 电子与信息学报, 2015, 37(10):2495-2500.(XU F, MA J J. Improvement of threshold RSA signature scheme based on Chinese remainder theorem[J]. Journal of Electronic & Information Technology, 2015, 37(10):2495-2500.)
[8] HOU Z F, TAN M N. A CRT-based(t, n) threshold signature scheme without a dealer[J]. Journal of Computational Information Systems, 2015, 11(3):975-986.
[9] OSTROVSKY R, YUNG M. How to withstand mobile virus attacks[C]//Proceedings of the Tenth Annual ACM Symposium on Principles of Distributed Computing. New York:ACM, 1991:51-59.
[10] HERZBERG A, JARECKI S, KRAWCZYK H, et al. Proactive secret sharing or:how to cope with perpetual leakage[C]//Proceedings of CRYPTO 1995 on Advances in Cryptology. Berlin:Springer, 1995:339-352.
[11] 于义科, 郑雪峰. 标准模型下基于身份的高效动态门限代理签名方案[J]. 通信学报, 2011, 32(8):55-63.(YU Y K, ZHENG X F. ID-based efficient and proactive threshold proxy signature in the standard model[J]. Journal on Communications, 2011, 32(8):55-63.)
[12] WANG X Q, LIN C L, LI Y. Proactive secret sharing without a trusted party[C]//Proceedings of the 5th IEEE International Conference on Intelligent Networking and Collaborative Systems. Washington, DC:IEEE Computer Society, 2013:511-515.
[13] ZHU Y S, WANG B J, CAI C. A novel smart-card based authentication scheme using proactive secret sharing[J]. International Journal of Computer and Communication Engineering, 2016, 5(3):196-205.
[14] 徐甫. 基于多项式秘密共享的前摄性门限RSA签名方案[J]. 电子与信息学报, 2016, 38(9):2280-2286.(XU F. Proactive threshold RSA signature scheme based on polynomial secret sharing[J]. Journal of Electronics & Information Technology, 2016, 38(9):2280-2286.)
[15] LUO H Y, LU S W. Ubiquitous and robust authentication services for Ad Hoc wireless networks:TR-200030[R]. Los Angeles:University of California, 2000.
[16] DONG P, KUANG X H, LU X C. A non-interactive protocol for member expansion in a secret sharing scheme[J]. Journal of Software, 2005, 16(1):116-120.
[17] 殷凤梅, 濮光宁. 允许新成员加入的无可信中心秘密共享方案分析[J]. 重庆科技学院学报(自然科学版), 2011, 13(6):173-175.(YIN F M, PU G N. Analysis of member expansion of a secret sharing scheme without dealer[J]. Journal of Chongqing University of Science and Technology (Natural Science Edition), 2011, 13(6):173-175.)
[18] 许静芳, 崔国华, 程琦, 等. 秘密共享新个体加入协议的安全性分析与改进[J]. 通信学报, 2009, 30(10):118-123.(XU J F, CUI G H, CHENG Q, et al. Cryptanalysis of a non-interactive protocol for member expansion in a secret sharing scheme[J]. Journal on Communications, 2009, 30(10):118-123.)

基于中国剩余定理的动态门限签名方案

Dynamic threshold signature scheme based on Chinese remainder theorem

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 14

编辑推荐

Metrics

[1]	卿欣艺, 陈玉玲, 周正强, 涂园超, 李涛. 基于中国剩余定理的区块链存储扩展模型[J]. 计算机应用, 2021, 41(7): 1977-1982.
[2]	李靖, 景旭, 杨会君. 基于实用拜占庭容错算法的区块链电子计票方案[J]. 计算机应用, 2020, 40(4): 954-960.
[3]	程亚歌, 贾志娟, 胡明生, 公备, 王利朋. 适用于区块链电子投票场景的门限签名方案[J]. 计算机应用, 2019, 39(9): 2629-2635.
[4]	王会勇, 孙爽, 冯勇. 基于中国剩余定理的公钥加密方案同态性[J]. 计算机应用, 2015, 35(6): 1668-1672.
[5]	韩明军熊焰陆琦玮龚旭东刘涛. 无人值守WSN中基于中国剩余定理的可靠数据生存方案[J]. 计算机应用, 2013, 33(05): 1343-1346.
[6]	肖振久胡驰陈虹. 四素数RSA数字签名算法的研究与实现[J]. 计算机应用, 2013, 33(05): 1374-1377.
[7]	石贤芝林昌露张胜元唐飞. 标准模型下高效的门限签名方案[J]. 计算机应用, 2013, 33(01): 15-18.
[8]	张利远张恩. 基于中国剩余定理的可验证理性秘密共享方案[J]. 计算机应用, 2012, 32(11): 3143-3146.
[9]	杜治国胡大辉. 改进的RSA算法在无线传感器网络中的应用[J]. 计算机应用, 2012, 32(06): 1609-1612.
[10]	吉克林皓杨军. 基于多播RSA的“零密钥更新”方案的安全分析[J]. 计算机应用, 2011, 31(03): 793-797.
[11]	罗黎霞张峻. 基于双线性映射的动态门限签名方案[J]. 计算机应用, 2010, 30(3): 677-679.
[12]	陈作新. 一种基于AES和三素数RPrime RSA认证加密方案[J]. 计算机应用, 2008, 28(12): 3199-3201.
[13]	刘军龙王彩芬 . 基于身份的可截取门限签名方案[J]. 计算机应用, 2006, 26(8): 1817-1820.
[14]	陆洪文，郑卓. 基于双线性对的门限部分盲签名方案[J]. 计算机应用, 2005, 25(09): 2057-2059.