| 抗签名密钥泄露的可撤销无证书签名 |
| |
| 引用本文: | 孙银霞,张福泰,沈丽敏.抗签名密钥泄露的可撤销无证书签名[J].软件学报,2015,26(12):3196-3203. |
| |
| 作者姓名: | 孙银霞 张福泰 沈丽敏 |
| |
| 作者单位: | 南京师范大学计算机科学与技术学院, 江苏 南京 210023;江苏省信息安全保密技术工程研究中心, 江苏 南京 210023,南京师范大学计算机科学与技术学院, 江苏 南京 210023;江苏省信息安全保密技术工程研究中心, 江苏 南京 210023,南京师范大学计算机科学与技术学院, 江苏 南京 210023;江苏省信息安全保密技术工程研究中心, 江苏 南京 210023;西安电子科技大学, 陕西 西安 710071 |
| |
| 基金项目: | 国家自然科学基金(61170298);江苏省自然科学基金(BK20130908);江苏省高校自然科学基金(13KJD520006) |
| |
| 摘 要: | 当用户的私钥泄露或使用权限到期时,系统如何撤销该用户是亟待解决的问题.这一问题在传统公钥系统TPKC和基于身份的公钥系统IBC下已有解决方案,然而在无证书公钥系统中,这一问题至今没有得到很好的解决.我们知道,无证书公钥系统没有庞杂的证书库和密钥托管问题,只是算法的计算量稍有增加,是TPKC和IBC之外的一种较理想的公钥系统,所以对它的撤销机制的研究十分必要.设计了一种可撤销的无证书签名方案,基本原理是:系统定期地给每个未被撤销的用户生成新的时间密钥,并通过公共信道传输给用户.相比现有的Al-Riyami和Paterson的撤销机制而言,该方案更加高效.同时,新方案达到了抗签名密钥泄露的安全性,且签名密钥的长度非常短.在CDH困难性假设下,该方案是UF-CMA可证明安全的.
|
| 关 键 词: | 无证书公钥系统 无证书签名 撤销 抗签名密钥泄露 |
| 收稿时间: | 2013/11/1 0:00:00 |
| 修稿时间: | 2015/2/15 0:00:00 |
Efficient Revocable Certificateless Signature Against Signing Key Exposure |
| |
| SUN Yin-Xi,ZHANG Fu-Tai and SHEN Li-Min.Efficient Revocable Certificateless Signature Against Signing Key Exposure[J].Journal of Software,2015,26(12):3196-3203. |
| |
| Authors: | SUN Yin-Xi ZHANG Fu-Tai and SHEN Li-Min |
| |
| Affiliation: | School of Computer Science and Technology, Nanjing Normal University, Nanjing 210023, China;Jiangsu Engineering Research Center of Information Security and Privacy Protection Technology, Nanjing 210023, China,School of Computer Science and Technology, Nanjing Normal University, Nanjing 210023, China;Jiangsu Engineering Research Center of Information Security and Privacy Protection Technology, Nanjing 210023, China and School of Computer Science and Technology, Nanjing Normal University, Nanjing 210023, China;Jiangsu Engineering Research Center of Information Security and Privacy Protection Technology, Nanjing 210023, China;Xidian University, Xi'an 710071, China |
| |
| Abstract: | A necessary problem in public key cryptosystem is how to revoke a user when the user's private key is compromised or the permission is prohibited. There have been many effective solutions in both traditional public key cryptosystem(TPKC) and identity based cryptosystem(IBC). But, in certificateless public key cryptosystem the revocation problem still remains to be efficiently solved. As is known, certificateless cryptosystem is a good substitution for TPKC and IBC since it features no certificate and no key escrow with only a little more computation. So, it is very necessary to design efficient revocation solutions in the certificateless setting. This paper gives a revocable certificateless signature scheme in which the system periodically generates new time keys for all non-revoked users via public channels. Compared with the existing Al-Riyami and Paterson revocation mechanism, our scheme is much better in efficiency. Furthermore, the new scheme can resist signing key exposure with very short signing key. In the CDH assumption, our scheme is UF-CMA provably secure. |
| |
| Keywords: | certificateless public key cryptosystem certificateless signature revoke signing key exposure resilient |
|
| 点击此处可从《软件学报》浏览原始摘要信息 |
|
点击此处可从《软件学报》下载全文 |
|
