一种标准模型下无证书签名方案的安全性分析与改进

无证书签名具有基于身份密码体制和传统公钥密码体制的优点,可解决复杂的公钥证书管理和密钥托管问题.Wu和Jing提出了一种强不可伪造的无证书签名方案,其安全性不依赖于理想的随机预言机.针对该方案的安全性,提出了两类伪造攻击.分析结果表明,该方案无法实现强不可伪造性,并在"malicious-but-passive"的密钥生成中心攻击下也是不安全的.为了提升该方案的安全性,设计了一个改进的无证书签名方案.在标准模型中证明了改进的方案对于适应性选择消息攻击是强不可伪造的,还能抵抗恶意的密钥生成中心攻击.此外,改进的方案具有较低的计算开销和较短的私钥长度,可应用于区块链、车联网、无线体域网等领域.

Security Analysis and Improvement of a Certificateless Signature Scheme in the Standard Model

Certificateless signature combines the advantages of identity-based cryptosystem and traditional public-key cryptosystem to solve the problems of complex public key certificate management and key escrow.Wu and Jing proposed a strongly unforgeable certificateless signature scheme whose security does not depend on the ideal random oracle.In this paper,two types of forgery attacks are proposed for the security of this scheme.The analysis results show that this scheme cannot achieve strong unforgeability and is insecure under the "malicious-but-passive" key generation center attack.To enhance the security of this scheme,an improved certificateless signature scheme is presented.The improved scheme is proved to be strongly unforgeable against adaptive chosen-message attacks and can also resist malicious key generation center attacks.In addition,the improved scheme has lower computational overhead and shorter private key length,and can be applied to blockchain,Internet of vehicles,wireless body area network and other fields.