共查询到20条相似文献,搜索用时 15 毫秒
1.
A secure identity-based multi-proxy signature scheme 总被引:1,自引:0,他引:1
Feng Cao 《Computers & Electrical Engineering》2009,35(1):86-95
In a multi-proxy signature scheme, an original signer could authorize a proxy group as his proxy agent. Then only the cooperation of all the signers in the proxy group can generate the proxy signatures on behalf of the original signer. Plenty of multi-proxy signature schemes have been proposed under the certificate-based public key systems. Due to the various applications of the bilinear pairings in cryptography, many identity-based signature schemes have been proposed. In this paper, we give the first formal definition and security model of an identity-based multi-proxy signature scheme, then propose an identity-based multi-proxy signature scheme from bilinear pairings and prove its security in our security model. 相似文献
2.
3.
Improvement of identity-based proxy multi-signature scheme 总被引:2,自引:0,他引:2
Zuhua Shao Author Vitae 《Journal of Systems and Software》2009,82(5):794-800
A proxy signature scheme allows a proxy signer to sign messages on behalf of an original signer, a company or an organization. A proxy multi-signature scheme is an extension of the basic proxy signature scheme, and permits two or more original signers to delegate their signing powers to the same proxy signer. Recently, Wang and Cao proposed an identity-based proxy multi-signature scheme. This scheme is very simple and efficient since it is an extension of the identity-based aggregate signature scheme due to Gentry and Ramzan. Though the identity-based aggregate signature scheme of Gentry and Ramzan is secure in the random oracle model, in this paper, we find that the identity-based proxy multi-signature scheme of Wang and Cao is not secure unless each proxy secret key can only be used to generate at most one proxy signature. Finally, we propose an improvement to overcome this weakness, which is more simple and efficient than the identity-based proxy multi-signature scheme of Wang and Cao. We show that the improvement is existentially unforgettable in the random oracle model under the computational Diffie-Hellman assumption. 相似文献
4.
Certificateless multi-proxy signature 总被引:3,自引:0,他引:3
Multi-proxy signature is a scheme that an original signer authorizes a proxy group as his proxy agent and later only the cooperation of all proxy signers in the proxy group could sign messages on behalf of the original signer. To our best knowledge, most of the existing multi-proxy signature schemes are proposed in public key infrastructure or identity-based setting. However, due to avoiding the inherent escrow problem of identity-based cryptography and yet not requiring certificates to guarantee the authenticity of public keys, certificateless public key cryptography has become an attractive paradigm on which many cryptographical primitives are based. In this paper, a generic construction and a formal security model of certificateless multi-proxy signature (CLMPS) are firstly defined. A concrete CLMPS scheme is also proposed, which is proven to be existentially unforgeable against adaptively chosen warrant attacks and chosen message and identity attacks in the random oracle model under the computational Diffie-Hellman assumption. 相似文献
5.
来自双线性配对的新的代理多签名、多代理签名和多代理多签名体制 总被引:16,自引:1,他引:16
作者提出三类新的来自双线性配对的涉及多个签名人的代理签名体制.第一类称为代理多签名体制,它允许一组原始签名人授权给一个代理签名人来代表他们;第二类称为多代理签名体制,意思是一个原始签名人可以授权给一组代理签名人来代表他(她);第三类称为多代理多签名体制,因为在此体制中,多个原始签名人把他们的签名权利委托给一组代理签名人.作为准备,作者提出了基于Hess的基于身份签名体制的多签名体制,这是第一个来自双线性配对的基于身份的多签名体制,后两类代理签名体制将用到它.关于作者提出的新体制,最重要的一点是在这三类体制中,代理签名的长度均独立于原始签名人或代理签名人的个数.它们的验证也与一般的代理签名类似. 相似文献
6.
在代理签名方案中,原始签名人能将其数字签名权力委托给代理签名人。前向安全的数字签名能解决密钥泄露问题。现有基于身份前向安全的代理签名文献数量少,效率也有待进一步提高。结合代理签名和前向安全,利用双线性映射,构造了一种高效的基于身份前向安全的代理签名方案。分析表明,该方案在保持了前向安全代理签名的各种安全特性的条件下,效率高于已有方案,更适合在实际中应用。 相似文献
7.
8.
9.
Multi-proxy signature schemes are very useful tools when an original signer needs to delegate his signing capability to a group of proxy signers, and have been suggested in numerous applications. The proxy revocation problem is an essential issue of the proxy signature schemes, however, it is seldom considered in the multi-proxy signature schemes. In this paper, we give a formal definition and security model of the multi-proxy signature schemes with proxy revocation, and propose a multi-proxy signature scheme with proxy revocation. Our scheme can perform the immediate revocation by using a security mediator (SEM), who examines whether each proxy signer signs according to a warrant or its identity exists in a revocation list, and then decides if it issues a proxy token for each proxy signer. The proposed scheme is proven existentially unforgeable against chosen message/warrant attacks based on the computational Diffie-Hellman intractability assumption in the standard model. Furthermore, the size of a multi-proxy signature is constant and independent of the number of the proxy signers. 相似文献
10.
通过对一种基于身份的代理盲签名方案的分析,指出该方案并不满足不可伪造性和不可连接性,代理人通过计算原始签名人的私钥,可以伪造原始签名人的签名或授权;当代理盲签名信息公开后,代理签名人经过分析计算自己已知信息,得知该方案不满足不可连接性,即盲性。在此基础上通过引入随机数和增加参数的方法,提出了一种基于身份的代理盲签名方案,克服了原方案存在的安全缺陷,并且保留了原方案的其它优点。 相似文献
11.
随着基于公钥密码体制的数字签名技术的发展,密钥管理问题成为数字签名技术能否广泛应用的关键所在,简化密钥管理成为数字签名技术发展的新方向。因此,基于身份的数字签名被提出,它简化了密钥管理工作,具有签名长度短的优点。之后,密码学界将双线性映射应用于基于身份的数字签名,它有效简化了证书密钥管理和密钥分发问题。随后,各种基于身份的数字签名的变种方案被提出,如基于身份的代理签名、基于身份的盲签名、基于身份的环签名和基于身份的门限签名等。文章主要内容为基于身份的代理签名。文章通过对王泽成等人的基于身份的代理签名方案进行分析,展示出这种方案是不安全的,尽管这种方案在随机预言机模型下被证明是安全的。此外,该方案不满足不可伪造性,原始授权人能够伪造一个合法有效的代理签名,代理人也可以滥用其代理签名权利。文章在此基础上提出了改进方案,新方案克服了原方案的安全缺陷,也满足了代理签名的各种安全性要求。 相似文献
12.
杨长海 《计算机工程与应用》2010,46(18):121-124
为了提高代理盲签名的实用性和灵活性,结合基于身份的密码体制和秘密共享技术,提出了基于身份的门限多代理多盲签名方案。在该方案中,原始群和代理群的管理员通过分发共享秘密来控制群成员的行为,在群成员获得共享秘密后,一定数量的原始签名者合作可以进行授权,一定数量的代理签名者合作可以产生签名。该方案解决了多个代理签名者代表多个原始签名者进行盲签名的问题,经分析得知,方案同时具有代理签名、盲签名和门限签名所具有的安全性质,如不可伪造性、不可否认性、盲性、不可追踪性和鲁棒性等。 相似文献
13.
A proxy signature scheme allows a proxy signer to sign messages on behalf of an original signer within a given context. It has lots of practical applications in distributed systems, grid computing, mobile agent applications, distributed shared object systems, global distribution networks, and mobile communications. In the last years, fruitful achievements have been seen in certificateless public key cryptography which has the advantages of no certificate management and no key escrow compared with traditional public key cryptography and identity-based public key cryptography respectively. However, the existing certificateless proxy signature schemes is either insecure or without formal security analysis. In this paper, we formalize the security model of certificateless proxy signature schemes and propose a provably secure certificateless proxy signature scheme with formal security proof under the computational Diffie–Hellman assumption. 相似文献
14.
15.
椭圆曲线上的多级代理签名方案 总被引:3,自引:3,他引:0
在已知的各种代理签名方案中,原始签名人和代理签名人只能进行一级代理。但在有些情形下,签名权利需要逐级向下代理,而已知的方案不能满足这种需要。本文基于椭圆曲线提出了一种多级代理签名方案。在该方案中,原始签名人不仅可授权1级代理签名人对消息进行签名,而且1级代理签名人可在许可范围内继续逐级授权。新方案具有实现简单且安全性高等特点,而且也是迄今为止第一类多级代理签名方案。另外,该文还在上述方案的基础上,提出了多级多代理多签名方案。它的适用范围更加广泛,已知的一些代理签名方案可看作它的特例。同时,它也满足有效性、不可否认性、安全性等性质。 相似文献
16.
17.
多代理盲签名综合了多代理签名和盲签名的优点,是一种特殊的数字签名。它由一个原始签名人授权给一组代理签名人,并且这组代理签名人并不知道消息的具体内容。基于离散对数问题提出了一种新的多代理盲签名方案。该方案不需要安全信道传送代理密钥,且具有不可伪造性、不可链接性。 相似文献
18.
代理签名方案允许原始签名者将自己的签名权力授权给代理签名者,使得代理签名者能够代表原始签名者对消息进行签名。提出了一个新的标准模型下可证安全的代理签名方案,其安全性基于q-强Diffie-Hellman困难问题,证明了该方案在标准模型下能够抵抗适应性选择消息攻击下的存在性伪造。与已有的方案进行比较,提出的方案需要较少的公共参数,实现了紧凑的安全归约,并且在密钥生成、标准签名、授权生成、代理签名生成等阶段具有较高的效率。 相似文献
19.
基于证书的密码体制既能降低公钥管理的高昂费用,又能解决密钥托管问题。多代理签名允许一个原始签名者把他的签名权委托给一群代理签名人,并且只有所有代理签名人合作才能产生有效的代理签名。给出了基于证书的多代理签名的形式化定义和安全模型,并提出了一个不使用双线性对的基于证书的多代理签名方案。在随机预言机模型中,基于离散对数问题假设,对方案进行了不可伪造性的证明。效率分析表明,该方案是高效的。最后,给出了该方案的应用实例。 相似文献
20.
利用Cha-Cheon的基于身份的签名方案提出了一个可证安全的基于身份的可验证加密签名(verifiably encrypted signature,简称 VES)方案,并利用该方案和基于身份的代理可验证加密签名(proxy verifiably encrypted signature,简称 PVES)方案提出了一个新颖的多元合同签署协议.信息交换过程中,原始签名者或代理签名者分别利用VES或PVES实现承诺消息的交换与认证,并未使用复杂的零知识证明系统,从而有效避免了大量运算.当争议发生时,可信第三方从VES或PVES中恢复出有效的合同签名,以保证签署者的公平性.安全性分析结果表明,协议满足不可否认性、时效性以及公平性. 相似文献