对两个基于离散对数的数字签名方案的攻击分析与改进

doi:10.3724/SP.J.1087.2011.01859

计算机应用 ›› 2011, Vol. 31 ›› Issue (07): 1859-1861.DOI: 10.3724/SP.J.1087.2011.01859

对两个基于离散对数的数字签名方案的攻击分析与改进

范函¹,²,张少武¹

1. 信息工程大学电子技术学院，郑州 450004
2. 许继昌南通信设备有限公司，河南许昌 461000

收稿日期:2010-12-27 修回日期:2011-01-28 发布日期:2011-07-01 出版日期:2011-07-01
通讯作者: 范函
作者简介:范函(1963-),男,河南许昌人,工程师,硕士研究生,主要研究方向：密码学、数字签名;张少武(1964-),男,河南洛阳人,教授,主要研究方向：密码学、信息安全。

Attack analysis and improvement on two DL-based digital signature schemes

Han FAN¹,²,Shao-wu ZHANG¹

1. Institute of Electronic Technology,Information Engineering University,Zhengzhou Henan 450004,China
2. XJ Changnan Communications Equipment Company Limited,Xuchang Henan 461000,China

Received:2010-12-27 Revised:2011-01-28 Online:2011-07-01 Published:2011-07-01
Contact: Han FAN

摘要/Abstract

摘要： 利用陈宁宇等人(陈宁宇，顾永跟，苏晓萍.数字签名方案的同底构造攻击. 计算机应用,2010,30(4):1042-1044)提出的同底构造攻击方法对两个基于离散对数的数字签名方案进行了攻击分析。对李方伟等人(李方伟，谭利平，邱成刚，基于离散对数的代理盲签名. 电子科技大学学报,2008,37(2)：172-174)提出的一种改进的代理盲签名方案进行了攻击分析，发现不诚实的代理签名人利用伪造攻击，可以假冒代理签名接收人生成有效的代理盲签名。对LEIN HARN等人(HARN L, REN JIAN, LIN CHANGLU. Design of DLbased certificateless digital signatures. Journal of Systems and Software，2009，82(5):789-793)提出的一种基于离散对数的无证书签名方案进行了攻击分析，发现不诚实的密钥生成中心（PKG）可以伪造用户的私钥。给出了攻击的方法，分析了造成攻击的原因并提出了相应的改进措施。

关键词: 数字签名, 离散对数, 代理盲签名, 无证书签名, 同底构造攻击

Abstract: The method of identical base construction attack on digital signature scheme proposed by CHEN NINGYU et al. (CHEN NING-YU, GU YONG-GEN, SU XIAO-PING. Identical base construction attack on digital signature scheme. Journal of Computer Applications,2010,30(4):1042-1044) was used to carry out attack analysis on the two DLbased digital signature schemes. The improved proxy blind signature scheme proposed by LI FANGWEI et al. (LI FANG-WEI，TAN LI-PING，QIU CHENG-GANG.A proxy blind signature scheme based on DLP. Journal of Electronic Science and Technology, 2008,37(2)：172-174.) was analytical attacked. It was found out that, using the forgery attack, a dishonest proxy signer could fake proxy signature receiver to generate valid proxy blind signature. A DL-based signature scheme without certificates proposed by Lein Harn et al. (HARN L, REN JIAN, LIN CHANGLU. Design of DLbased certificateless digital signatures. Journal of Systems and Software，2009，82(5):789-793) was analyzed and it was found that the dishonest Private Key Generator (PKG) can forge the users private key. The cause of the attack was analyzed and the attack methods and the improvement measures were presented.

Key words: Digital signature, Discrete logarithm, Proxy blind signature, Certificateless digital signature, Identical base construction attack

范函张少武. 对两个基于离散对数的数字签名方案的攻击分析与改进[J]. 计算机应用, 2011, 31(07): 1859-1861.

Han FAN Shao-wu ZHANG. Attack analysis and improvement on two DL-based digital signature schemes[J]. Journal of Computer Applications, 2011, 31(07): 1859-1861.

参考文献

[1]DIFFIE W,HELLMAN M E.New directions in cryptography[J]. IEEE Transactions on Information Theory, 1976,22(6):644-654.

[2]陈宁宇,顾永跟,苏晓萍.数字签名方案的同底构造攻击[J]. 计算机应用,2010,30(4):1042-1044.

[3]李方伟,谭利平,邱成刚.基于离散对数的代理盲签名[J]. 电子科技大学学报,2008,37(2)：172-174.

[4]HARN L, REN JIAN, LIN CHANGLU. Design of DL-based certificateless digital signatures[J]. The Journal of Systems and Software,2009,82(5):789-793.

[5]MAMBO M, USUDA K, OKAMOTO E. Proxy signatures: Delegation of the power to sign messages[J]. IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences, 1996,E79-A(9):1338-1354.

[6]TAN ZUOWEN, LIN ZHOUJUN, TANG CHUNMING. Digital proxy blind signature schemes based on DLP and ECDLP[J]. MM Research Preprints,2002,21(7):212-217.

[7]AWASTHI A K, SUNDER L. Proxy blind signature scheme[J]. Transactions on Cryptology, 2005, 2(1): 5-11.

[8]SUN H M, HSIEH B T. On the security of some proxy blind signature schemes[EB/OL]. [2010-08-20]. http://eprint.iacr.org.

[9]WANG SHAOBIN,HONG FAN,CUI GUOHUA. Secure efficient proxy blind signature schemes based DLP[C]// Proceedings of the Seventh IEEE International Conferenceon E-Commerce Technology. New York: IEEE,2005:452-455.

[10]AL-RIYAMI S S, PATERSON K G. Certificateless public key cryptography[C]// Cryptology-Asiacrypt 2003,LNCS 2894. Berlin: Springer-Verlag, 2003: 452-473.

[11]CASTRO R, DAHAB R. Two notes on the security of certificateless signatures[C]// Proceedings of the 1st International Conference on Provable Security, LNCS 4784. Berlin: Springer-Verlag, 2007: 85-102.

[12]HUANG XINYI, MU YI, SUSILO W, et al.Certificateless signature revisited[C]// Proceedings of the 12th Australasian Conference on Information Security and Privacy, LNCS 4586.Berlin: Springer-Verlag, 2007: 308-32.

[1]	杨龙海, 王学渊, 蒋和松. 改进SM2签名方法的区块链数字签名方案[J]. 计算机应用, 2021, 41(7): 1983-1988.
[2]	谷正川, 郭渊博, 方晨. 基于代理重加密的消息队列遥测传输协议端到端安全解决方案[J]. 计算机应用, 2021, 41(5): 1378-1385.
[3]	周致成, 李立新, 李作辉. 基于区块链技术的高效跨域认证方案[J]. 计算机应用, 2018, 38(2): 316-320.
[4]	鲁金钿, 尧利利, 何旭东, 孟博. 改进的OpenID Connect协议及其安全性分析[J]. 计算机应用, 2017, 37(5): 1347-1352.
[5]	曾小飞, 卢建朱, 王洁. 传感器节点相互协作的广播认证[J]. 计算机应用, 2016, 36(8): 2219-2224.
[6]	李云, 陈庞森, 孙山林. 基于近场通信认证的无线局域网无线接入协议的安全性设计[J]. 计算机应用, 2016, 36(5): 1236-1245.
[7]	黄萍, 杨小东, 李燕, 王彩芬. 无双线性对的基于身份代理重签名方案[J]. 计算机应用, 2015, 35(6): 1678-1682.
[8]	左黎明, 陈仁群, 郭红丽. 可证安全的基于身份的签密方案[J]. 计算机应用, 2015, 35(3): 712-716.
[9]	杜桂颖, 黄振杰. 高效的基于证书可验证加密签名方案[J]. 计算机应用, 2015, 35(2): 407-411.
[10]	王倩, 郑东, 任方. 基于编码的盲签名方案[J]. 计算机应用, 2015, 35(10): 2867-2871.
[11]	叶翔徐展胡翔刘丹. 低成本有源RFID双向认证加密方案[J]. 计算机应用, 2014, 34(2): 456-460.
[12]	洪晓静王斌. 可容忍信息泄露的指定验证者签名方案[J]. 计算机应用, 2013, 33(12): 3514-3518.
[13]	王怡杜伟章. 无双线性对的无证书签名方案的分析及改进[J]. 计算机应用, 2013, 33(08): 2250-2252.
[14]	肖振久胡驰陈虹. 四素数RSA数字签名算法的研究与实现[J]. 计算机应用, 2013, 33(05): 1374-1377.
[15]	何俊杰王娟祁传达. 一个无证书签名方案的分析与改进[J]. 计算机应用, 2013, 33(05): 1378-1381.

对两个基于离散对数的数字签名方案的攻击分析与改进

Attack analysis and improvement on two DL-based digital signature schemes

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics