可证安全的CLPKC-to-IDPKC在线/离线异构签密方案

在线/离线签密不仅可以提高移动设备的计算效率,而且还可以保证数据的机密性和不可伪造性。异构密码环境下,需要考虑不同公钥密码环境之间的在线/离线签密问题。定义了从无证书密码体制到身份密码体制的在线/离线异构签密安全模型,并提出了具体的CLPKC-to-IDPKC在线/离线异构签密方案。方案执行签密运算时,不需要双线性对运算;执行解签密时,只需要2个双线性对运算。与已有在线/离线异构签密方案相比,在效率相当的情况下不存在证书管理问题,适合于计算能力受限的移动设备。通过安全性证明本文方案满足机密性和不可伪造性。最后的实验仿真分析了所提方案在线/离线签密和解签密的效率,该方案采用了独立系统参数,更适用于实际应用环境。

A provable secure from CLPKC to IDPKConline/offline heterogeneous signcryption scheme

Online/offline signcryption can not only enhance the computation efficiency of mobile devices, but also ensure the confidentiality and unforgeability of data simultaneously. Under the heterogeneous cryptography environment, the online/offline heterogeneous signcryption between different public key cryptographies should be taken into consideration. We define the online/offline heterogeneous signcryption security model from certificateless public key cryptography (CLPKC) to identity based public key cryptography (IDPKC), and propose a concrete online/offline heterogeneous signcryption scheme from CLPKC to IDPKC. When performing signcryption operation, the scheme does not require any billinear pairing operation. Besides, it only needs two billinear pairing operations when performing un signcryption. Compared with existing online/offline heterogeneous signcryption schemes, the proposed scheme has no certificate management problem while having equivalent efficiency, and thus it is suitable for mobile devices with limited computing power. The security proof shows that the scheme can meet the need of confidentiality and unforgeability. We analyze the efficiency of of online/offube signcryption and un signcryption of the proposed scheme in the simulation step. The scheme adopts independent system parameters, which makes it more suitable for practical application environments.