| 一个无证书代理签名方案的安全性分析 |
| |
| 引用本文: | 胡国政,洪帆.一个无证书代理签名方案的安全性分析[J].计算机应用,2009,29(8). |
| |
| 作者姓名: | 胡国政 洪帆 |
| |
| 作者单位: | 1. 华中科技大学,计算机科学与技术学院,武汉,430074;武汉理工大学,理学院,武汉,430070
2. 华中科技大学,计算机科学与技术学院,武汉,430074 |
| |
| 基金项目: | 国家自然科学基金,湖北省自然科学基金 |
| |
| 摘 要: | 无证书公钥密码体制消除了公钥基础设施中的证书,同时解决了基于身份的公钥密码体制中的密钥托管问题.最近,樊睿等人在一个无证书签名方案的基础上提出了一个无证书代理签名方案,并声称该方案满足无证书代理签名方案的所有安全性质.可是,通过对该无证书代理签名方案进行分析,证明了该方案对于无证书密码体制中两种类型的攻击即公钥替换攻击和恶意KGC(Key Generating Centre)攻击都是不安全的.给出了攻击方法,分析了其中的原因并提出了相应的防止措施.
|
| 关 键 词: | 无证书代理签名 密钥替换攻击 恶意KGC攻击 双线性映射 |
Security analysis of certificateless proxy signature scheme |
| |
| HU Guo-zheng,HONG Fan.Security analysis of certificateless proxy signature scheme[J].journal of Computer Applications,2009,29(8). |
| |
| Authors: | HU Guo-zheng HONG Fan |
| |
| Affiliation: | 1. School of Computer Science and Technology;Huazhong University of Science and Technology;Wuhan Hubei 430074;China;2. School of Science;Wuhan University of Technology;Wuhan Hubei 430070;China |
| |
| Abstract: | Certificateless cryptography eliminates the need of certificates in the Public Key Infrastructure (PKI) and solves the inherent key escrow problem. Recently,Fan Rui et al. proposed a certificateless proxy signature scheme based on a certificateless signature scheme. They claimed that their scheme satisfied the security requirements of certificateless proxy signature schemes. However,the analysis of their scheme showed that it was insecure against the two kinds of attacks in certificateless cryptosystems,i.e... |
| |
| Keywords: | certificateless signature public key replacement attack malicious KGC attack bilinear map |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
