具有分布式打开权威的隐藏身份签名方案

doi:10.3724/SP.J.1087.2012.00699

计算机应用 ›› 2012, Vol. 32 ›› Issue (03): 699-704.DOI: 10.3724/SP.J.1087.2012.00699

具有分布式打开权威的隐藏身份签名方案

柳欣^1,2

1.山东青年政治学院信息工程学院, 济南 250014;
2.山东大学计算机科学与技术学院, 济南 250101

收稿日期:2011-08-23 修回日期:2011-11-09 发布日期:2012-03-01 出版日期:2012-03-01
通讯作者: 柳欣
作者简介:柳欣(1978-),男,山东广饶人,讲师,博士研究生,CCF会员,主要研究方向:信息安全、密码学。
基金资助:
山东省高等学校科技计划项目(J11LG29)。

Hidden identity-based signature scheme with distributed open authorities

LIU Xin^1,2

1.School of Information Engineering, Shandong Youth University of Political Science, Jinan Shandong 250014, China;
2.School of Computer Science and Technology, Shandong University, Jinan Shandong 250101, China

Received:2011-08-23 Revised:2011-11-09 Online:2012-03-01 Published:2012-03-01
Contact: Xin LIU

摘要/Abstract

摘要： 基于双线性映射的隐藏身份签名方案不满足可开脱性和选择密文攻击(CCA)匿名性,而在RSA群上构造的隐藏身份签名方案具有较高的通信和运算耗费。为此,利用块消息签名技术实现了可开脱性,提出一个允许设置分布式打开权威的改进方案。改进方案通过将分布式密钥提取和可同时执行的知识证明技术应用于底层门限加密方案,有效地实现了对打开权威的权利分发。此外, 为了克服传统串行注册方式无法抵抗拒绝服务攻击的不足,利用承诺的知识证明技术将注册过程增强为满足并发安全性的协议。在随机预言模型下,改进方案可证满足所要求的所有安全性质。对比实验结果表明：改进方案的签名长度更短, 签名与验证算法开销更小,由可信服务器执行的门限解密过程是并发安全的且在自适应攻击者模型下满足可证安全性。

关键词: 数字签名, 群签名, 基于身份的签名, 知识证明, 门限加密, 自适应安全性

Abstract: Hidden identity-based signature schemes from bilinear maps do not achieve exculpability and Chosen-Ciphertext Attack (CCA) anonymity, while schemes of this type built on RSA groups suffer from significant communication and computation overheads. Concerning this situation, an improved scheme with distributed open authorities was put forward, which satisfied exculpability by making use of the block messages signature. It achieved efficient distribution of the open authority by applying distributed key extraction and simultaneous proof of knowledge to the underlying threshold encryption scheme. Furthermore, to cope with the shortcomings of traditional serial registration, i.e., being vulnerable to the denial-of-service attack, its registration protocol was enhanced to be concurrent-secure by using the method of committed proof of knowledge. In the random oracle model, the proposed scheme could be proved to fulfill all the required properties. Performance comparison shows that the resultant signature is shorter and the algorithms (i.e., Sign and Verify) are more efficient. Moreover, the process of threshold decryption by trusted servers is proved to be concurrently-secure and it is also immune to adaptive adversaries.

Key words: digital signature, group signature, identity-based signature, knowledge proof, threshold encryption, adaptive security

中图分类号:

TP309.7

柳欣. 具有分布式打开权威的隐藏身份签名方案[J]. 计算机应用, 2012, 32(03): 699-704.

LIU Xin. Hidden identity-based signature scheme with distributed open authorities[J]. Journal of Computer Applications, 2012, 32(03): 699-704.

参考文献

[1]ZHOU S, LIN D. An interesting member ID-based group signature [EB/OL]. [2011-08-01]. http://eprint.iacr.org/2007/126.

[2]BOYEN X, WATERS B. Compact group signatures without random oracles [C]// EUROCRYPT 2006: Proceedings of the 25th Annual International Cryptology Conference, LNCS 4004. Berlin: Springer-Verlag, 2006: 427-444.

[3]袁艳,蔡光兴. 新的无随机预言的短群签名方案 [J]. 计算机应用,2011,31(3): 790-792.

[4]KIAYIAS A, ZHOU H S. Hidden identity-based signatures [C]// FC 2007: Proceedings of the 11th International Conference on Financial Cryptography and Data Security, LNCS 4886. Berlin: Springer-Verlag, 2007: 134-147.

[5]KIAYIAS A, ZHOU H S. Hidden identity-based signatures [EB/OL]. [2011-08-01]. http://eprint.iacr.org/2007/140.

[6]HAZAY C, KATZ J, KOO C Y, et al. Concurrently-secure blind signatures without random oracles or setup assumptions [C]// TCC 2007: Proceedings of the 4th IACR Theory of Cryptography Conference, LNCS 4392. Berlin: Springer-Verlag, 2007: 323-341.

[7]AU M H. Contribution to privacy-preserving cryptographic tech-niques [D]. Wollongong, Australia: University of Wollongong, 2009.

[8]BONEH D, BOYEN X. Short signatures without random oracles and the SDH assumption in bilinear groups [J]. Journal of Cryptology, 2008, 21(2): 149-177.

[9]SHOUP V, GENNARO R. Securing threshold cryptosystems against chosen ciphertext attack [J]. Journal of Cryptology, 2002, 15(2): 75-96.

[10]KIAYIAS A, XU S, YUNG M. Privacy preserving data mining within anonymous credential systems [C]// SCN 2008: Proceedings of the 6th Conference on Security and Cryptography for Networks, LNCS 5229. Berlin: Springer-Verlag, 2008: 57-76.

[11]LYSYANSKAYA A. Threshold cryptography secure against the adaptive adversary, concurrently [EB/OL]. [2011-08-01]. http://eprint.iacr.org/2000/019.

[12]CANETTI R, GENNARO R, JARECHI S, et al. Adaptive security for threshold cryptosystems [C]// CRYPTO 1999: Proceedings of the 19th Annual International Cryptology Conference, LNCS 1666. Berlin: Springer-Verlag, 1999: 98-116.

[13]JARECHI S. Efficient threshold cryptosystems [D]. Cambridge, USA: Massachusetts Institute of Technology, 2001.

[14]FISCHLIN M, ONETE C. Relaxed security notions for signatures of knowledge [C]// ACNS 2011: Proceedings of the 9th International Conference on Applied Cryptography and Network Security, LNCS 6715. Berlin: Springer-Verlag, 2011: 309-326.

[15]GENNARO R, JARECHI S, KRAWCZYK H, et al. Secure distributed key generation for discrete-log based cryptosystems [J]. Journal of Cryptology, 2007, 20(1): 51-83.

[16]AU M H, SUSILO W, MU Y. Constant-size dynamic k-TAA [EB/OL]. [2011-08-01]. http://eprint.iacr.org/2008/136.

[17]ROSEN A, SHELAT A. Optimistic concurrent zero knowledge [C]// ASIACRYPT 2010: Proceedings of the 16th Annual International Conference on the Theory and Application of Cryptology and Information Security, LNCS 6477. Berlin: Springer-Verlag, 2010: 359-376.

[18]NGUYEN L, SAFAVI-NAINI R. Efficient and provably secure trapdoor-free group signature schemes from bilinear pairings [C]// ASIACRYPT 2004: Proceedings of the 10th Annual International Conference on the Theory and Application of Cryptology and Information Security, LNCS 3329. Berlin: Springer-Verlag, 2004: 372-386.

[19]OHTAKE G, FUJII A, HANAOKA G, et al. On the theoretical gap between group signatures with and without unlinkability [C]// AFRICACRYPT 2009: Proceedings of the 2nd African International Conference on Cryptology, LNCS 5580. Berlin: Springer-Verlag, 2009: 149-166.

[20]FISCHLIN M. Communication-efficient non-interactive proofs of knowledge with online extractor [C]// CRYPTO 2005: Proceedings of the 25th Annual International Cryptology Conference, LNCS 3621. Berlin: Springer-Verlag, 2005: 152-168.

[21]FERRARA A L, GREEN M, HOHENBERGER S, et al. Practical short signature batch verification [C]// CT-RSA 2009: Proceedings of the Cryptographers' Track at the RSA Conference 2009, LNCS 5473. Berlin: Springer-Verlag, 2009: 309-324.

[22]WASEF A, SHEN X. Efficient group signature scheme supporting batch verification for securing vehicular networks [C]// IEEE ICC 2010: Proceedings of the 2010 IEEE International Conference on Communications. Piscataway, NJ: IEEE Press,2010: 1-5.

具有分布式打开权威的隐藏身份签名方案

Hidden identity-based signature scheme with distributed open authorities

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	赵振皓, 张仕斌, 万武南, 张金全, 秦智. 基于信誉值和强盲签名算法的委托权益证明共识算法[J]. 《计算机应用》唯一官方网站, 2024, 44(12): 3717-3722.
[2]	王一帆, 林绍福, 李云江. 基于区块链和零知识证明的高速公路自由流收费方法[J]. 《计算机应用》唯一官方网站, 2024, 44(12): 3741-3750.
[3]	贾淼, 姚中原, 祝卫华, 高婷婷, 斯雪明, 邓翔. 零知识证明赋能区块链的进展与展望[J]. 《计算机应用》唯一官方网站, 2024, 44(12): 3669-3677.
[4]	林超, 何德彪, 黄欣沂. 基于区块链的电子医疗记录安全共享[J]. 《计算机应用》唯一官方网站, 2022, 42(11): 3465-3472.
[5]	陈何雄, 罗宇薇, 韦云凯, 郭威, 杭菲璐, 毛正雄, 张振红, 何映军, 罗震宇, 谢林江, 杨宁. 基于区块链的软件定义网络数据帧安全验证机制[J]. 《计算机应用》唯一官方网站, 2022, 42(10): 3074-3083.
[6]	杨龙海, 王学渊, 蒋和松. 改进SM2签名方法的区块链数字签名方案[J]. 计算机应用, 2021, 41(7): 1983-1988.
[7]	谷正川, 郭渊博, 方晨. 基于代理重加密的消息队列遥测传输协议端到端安全解决方案[J]. 计算机应用, 2021, 41(5): 1378-1385.
[8]	李蓓, 张问银, 王九如, 赵伟, 王海峰. 基于区块链的密封式投标拍卖方案[J]. 计算机应用, 2021, 41(4): 999-1004.
[9]	吴芷菡, 崔喆, 刘霆, 蒲泓全. 基于区块链的安全电子选举方案[J]. 计算机应用, 2020, 40(7): 1989-1995.
[10]	左黎明, 胡凯雨, 张梦丽, 陈兰兰. 铁路桥梁监测中基于短签名方案的数据传输协议[J]. 计算机应用, 2018, 38(8): 2261-2266.
[11]	周致成, 李立新, 李作辉. 基于区块链技术的高效跨域认证方案[J]. 计算机应用, 2018, 38(2): 316-320.
[12]	鲁金钿, 尧利利, 何旭东, 孟博. 改进的OpenID Connect协议及其安全性分析[J]. 计算机应用, 2017, 37(5): 1347-1352.
[13]	曾小飞, 卢建朱, 王洁. 传感器节点相互协作的广播认证[J]. 计算机应用, 2016, 36(8): 2219-2224.
[14]	李云, 陈庞森, 孙山林. 基于近场通信认证的无线局域网无线接入协议的安全性设计[J]. 计算机应用, 2016, 36(5): 1236-1245.
[15]	左黎明, 陈仁群, 郭红丽. 可证安全的基于身份的签密方案[J]. 计算机应用, 2015, 35(3): 712-716.