可证明安全的基于身份的聚合签密方案

doi:10.11772/j.issn.1001-9081.2015.02.0412

摘要
图/表
参考文献(0)
相关文章 (15)

全文: PDF (626 KB) HTML
输出: BibTeX | EndNote (RIS)

摘要

为了更有效地保护网络信息的安全,需要同时实现消息的机密性和认证性。签密方案能够在一个逻辑步骤内同时实现对消息的签名和加密。为了提高当前已存在的签密方案的安全性和算法效率,结合聚合签名的思想,提出一种基于身份的聚合签密方案。在随机语言模型中证明了该方案具有适应性选择密文攻击下的不可区分性,在适应性选择消息攻击下是存在性不可伪造的,其安全性归约为计算椭圆曲线离散对数问题和双线性Diffie-Hellman问题的困难性。与目前效率较高、密文长度较短的几个方案进行比较的结果表明,新方案的签密和解签密过程分别仅需1次双线性对运算,具有计算成本低、密文长度短的优良特性。

	服务

	把本文推荐给朋友
	加入我的书架
	加入引用管理器
	E-mail Alert
	RSS
	作者相关文章
	王大星
	滕济凯

关键词 ：双线性对, 签密, 聚合签密, 随机预言模型, 可证明安全

Abstract：

In order to more effectively protect the security of network information, confidentiality and authentication of message need to be realized at the same time. Signcryption performs signature and encryption simultaneously in one logical step. In order to improve safety and efficiency of existing signcryption, an identity-based aggregate signcryption scheme was proposed by combining the ideas of aggregate signature. Under the random oracle model, the scheme was proved to be indistinguishable against adaptive chosen ciphertext attacks, and existentially unforgeable against adaptive chosen messages attacks. The security could be reduced to the elliptic curve discrete logarithm problem and computational bilinear paring Diffe-Hellman problem. Compared with serveral schemes with high efficiency and short key length, the analysis of results shows that the new scheme's signcryption and unsigncryption has only one pairing operation, thus has the excellent features with low computational cost and short length of ciphertext.

Key words： blinear pairing signcryption aggregate signcryption random oracle model provable security

收稿日期: 2014-09-02

中图分类号:

TP309.7

基金资助:

国家自然科学基金资助项目(61303256);安徽高校自然科学基金资助项目(KJ2013B185);滁州学院自然科学基金资助项目(2012kj001Z)。

通讯作者: 王大星 E-mail: daxingwang@126.com

作者简介: 王大星(1980-),男,安徽桐城人,讲师,硕士,主要研究方向:密码学、网络安全; 滕济凯(1980-),男,江苏连云港人,讲师,博士,主要研究方向:密码协议。

引用本文:

王大星, 滕济凯. 可证明安全的基于身份的聚合签密方案[J]. 计算机应用, 2015, 35(2): 412-415. WANG Daxing, TENG Jikai. Provably secure identity-based aggregate signcryption scheme. Journal of Computer Applications, 2015, 35(2): 412-415.

链接本文:

http://www.joca.cn/CN/10.11772/j.issn.1001-9081.2015.02.0412 或 http://www.joca.cn/CN/Y2015/V35/I2/412

[1] ZHENG Y. Digital signcryption or how to achieve cost (signature & encryption)≤ cost (signature) + cost (encryption) [C] //CRYPTO '97: Proceedings of the 17th Annual International Cryptology Conference, LNCS 1294. Berlin: Springer-Verlag, 1997: 165-179.
[2] AN J H, DODIS Y, RABIN T. On the security of joint signature and encryption [C]//EUROCRYPT 2002: Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques, LNCS 2332. Berlin: Springer-Verlag, 2002: 83-107.
[3] BAEK J, STEINFELD R, ZHENG Y. Formal proofs for the security of signcryption [C]//PKC 2002: Proceedings of the 5th International Workshop on Practice and Theory in Public Key Cryptosystems, LNCS 2274. Berlin: Springer-Verlag, 2002: 80-98.
[4] MALONE-LEE J, MAO W. Two birds one stone: signcryption using RSA [C]//CT-RSA 2003: Proceedings of the 2003 Cryptographers' Track at the RSA Conference, LNCS 2612. Berlin: Springer-Verlag, 2003: 211-226.
[5] MALONE-LEE J. Identity-based signcryption, Report 2002/098 [R/OL]. (2002-07-19) [2014-06-02]. http://eprint.iacr.org/2002/098.
[6] LIBERT B, QUISQUATER J-J. A new identity based signcryption schemes from pairings [C]//ITW'2003: Proceedings of the 2003 IEEE Information Theory Workshop. Piscataway: IEEE, 2003: 155-158.
[7] CHOW S S M, YIU S M, HUI L C K, et al. Efficient forward and provably secure ID-based signcryption scheme with public verifiability and public ciphertext authenticity [M]//ICISC 2003: Proceedings of the 6th International Conference on Information Security and Cryptology, LNCS 2971. Berlin: Springer-Verlag, 2004: 352-369.
[8] BOYEN X. Multipurpose identity-based signcryption [C]//CRYPTO 2003: Proceedings of the 23rd Annual International Cryptology Conference, LNCS 2729. Berlin: Springer-Verlag, 2003: 383-399.
[9] CHEN L, MALONE-LEE J. Improved identity-based signcryption [C]//PKC 2005: Proceedings of the 8th International Workshop on Theory and Practice in Public Key Cryptography, LNCS 3386. Berlin: Springer-Verlag, 2005: 362-379.
[10] BARRETO P, LIBERT B, MCCULLAGH N, et al. Efficient and provably-secure identity-based signatures and signcryption from bilinear maps [C]//ASIACRYPT 2005: Proceedings of the 11th International Conference on the Theory and Application of Cryptology and Information Security, LNCS 3788. Berlin: Springer-Verlag, 2005: 515-532.
[11] YU Y, YANG B, SUN Y, et al. Identity based signcryption scheme without random oracles [J]. Computer Standards & Interfaces, 2009, 31(1): 56-62.
[12] WANG X, QIAN H. Attacks against two identity-based signcryption schemes [C]//Proceedings of the Second International Conference on Networks Security Wireless Communications and Trusted Computing. Piscataway: IEEE, 2010, 1: 24-27.
[13] BONEH D, GENTRY C, LYNN B, et al. Aggregate and verifiably encrypted signatures from bilinear maps [C]//EUROCRPYT 2003: Proceedings of the 2003 International Conference on the Theory and Applications of Cryptographic Techniques, LNCS 2656. Berlin: Springer-Verlag, 2003:416-432.
[14] REN X, QI Z, GENG Y. Provably secure aggregate signcryption scheme [J]. ETRI Journal, 2012, 34(3): 421-428.
[15] SELVI S S D, VIVEK S S, SHRIRAM J, et al. Security analysis of aggregate signature and batch verification signature schemes, Report 2009/290 [R/OL]. [2014-06-24]. http://eprint.iacr.org/2009/290.