两个标准模型下可证明安全的代理签名方案分析和改进

J4 ›› 2014, Vol. 36 ›› Issue (11): 2153-2158.

两个标准模型下可证明安全的代理签名方案分析和改进

吴淑坤

(唐山师范学院计算机科学系，河北唐山 063000)

收稿日期:2013-02-17 修回日期:2013-07-28 出版日期:2014-11-25 发布日期:2014-11-25

Analysis and improvement of two provable secure
proxy signature schemes in the standard model

WU Shukun

(Department of Computer Science,Tangshan Normal University,Tangshan 063000,China)

Received:2013-02-17 Revised:2013-07-28 Online:2014-11-25 Published:2014-11-25

摘要/Abstract

摘要：

对最近冀会芳等学者和于义科等学者提出的基于Waters的两个标准模型下可证明安全的代理签名方案进行了安全分析，指出了这两个方案中存在的不足和缺陷，即存在授权伪造，任何人可以伪装成原始签名者向代理签名者发出有效的代理授权证书；存在代理签名伪造，任何人在不知道代理签名密钥的情况下，可伪造代理签名者的签名。提出了一个能克服缺陷的、改进的代理签名方案，并对改进方案的正确性、有效性和安全性进行了详细分析。分析显示，与两个原方案相比，改进的方案具有同样的签名长度、几乎一样的执行效率，但是更加安全。

关键词: 代理签名, 基于身份的密码, 安全分析, 不可伪造性

Abstract:

The security of two provable secure proxy signature schemes based on Waters in the standard mode, which are proposed by Ji et al. and Yu et al. recently,is analyzed,and the two drawbacks of the two schemes are pointed out: delegation forgeability exists so that anyone may disguise as the original signer to issue valid proxy delegation warrants to the proxy signer, and proxy signature forgeability exists so that anyone can forge the signature of the proxy signer without knowing the private key of the proxy signer.An improved proxy signature scheme that can overcome the drawbacks is proposed,and its correctness,efficiency and security are analyzed in detail. The analysis shows that the improved scheme has the same length of signature and almost the same execution efficiency in comparison to the two original schemes,but has higher security.

Key words: proxy signature;identity-based cryptography;security analysis;unforgeability

吴淑坤. 两个标准模型下可证明安全的代理签名方案分析和改进[J]. J4, 2014, 36(11): 2153-2158.

WU Shukun. Analysis and improvement of two provable secure
proxy signature schemes in the standard model [J]. J4, 2014, 36(11): 2153-2158.

参考文献［9］

［1］	Mambo M, Usuda K, Okamoto E. Proxy signature for delegating signing operation ［C］∥Proc of the 3rd ACM Conference on Computer and Communications Security, 1996:4857.
［2］	Shamir A.Identitybased cryptosystems and signature schemes ［C］∥Proc of Crypto 1984, 1984:4753.
［3］	Xu J,Zhang Z, Feng D. IDbased proxy signature using bilinear pairings［C］∥Proc of the 3rd International Symposium on Parallel and Distributed Processing and Applications, 2005:359367.
［4］	Paterson K G, Schuldt J C N. Efficient identitybased signatures secure in the standard model ［C］∥Proc of the 11th Australasian Conference on Information Security and Privacy, 2006:207222.
［5］	Wu W, Mu Y, Susilo W, et al. Identitybased proxy signature from pairings［C］∥Proc of the 4th International Conference on Autonomic and Trusted Computing, 2007:2231.
［6］	Li Mingxiang, Han Baitao, Zhu Jianyong, et al. Identitybased proxy signature scheme secure in standard model［J］. Journal of South China University of Technology (Natural Science Edition), 2009, 37(5):118129.(in Chinese)
［7］	Li Jiguo, Jiang Pingjin. An efficient and provably secure identitybased signature scheme in the standard model［J］. Chinese Journal of Computers, 2009, 32(11), 21312136.(in Chinese)
［8］	Ji Huifang,Han Wenbo,Liu Liandong.New identitybased proxy signature in the standard model ［J］. Computer Science, 2011, 38(8):8891.(in Chinese)
［9］	Yu Yike, Zhen Xuefeng, Han Xiaoguang, et al. Efficient idbased proxy signature in the standard model ［J］. Computer Science, 2011, 38(6):133139.(in Chinese)
［10］	Zhang Y, Liu J, Huang X, et al. Efficient escrowfree identitybased signature［C］∥Proc of the 6th International Conference, 2012:161174.
［11］	Waters B. Efficient identitybased encryption without random oracles ［C］∥Proc of Eurocrypt, SpringerVerlag, 2005:114127.
［12］	Lee B, Kim H, Kim K. Strong proxy signature and its applications［C］∥Proc of the 2001 Symposium on Cryptography and Information Security, 2001:2326.
	附中文参考文献：
［6］	李明祥, 韩伯涛, 朱建勇, 等.在标准模型下安全的基于身份的代理签名方案［J］. 华南理工大学学报（自然科学版）, 2009, 37(5):118129.
［7］	李继国, 姜平进. 标准模型下可证安全的基于身份的高效签名方案［J］. 计算机学报, 2009, 32(11):21312136.
［8］	冀会芳, 韩文报, 刘连东. 新的标准模型下基于身份的代理签名方案［J］. 计算机科学, 2011, 38(8):8891.
［9］	于义科, 郑雪峰, 韩晓光, 等. 一个标准模型下基于身份的高效代理签名方案［J］. 计算机科学, 2011, 38(6):133139.

[1]	杨小东,杨平,高国娟,刘婷婷,王彩芬. 具有聚合性质的无证书代理重签名方案[J]. 计算机工程与科学, 2018, 40(06): 1023-1028.
[2]	牛淑芬,牛灵,王彩芬,杨喜艳,贾向东. 可实现隐私保护的多接收者异构聚合签密方案[J]. 计算机工程与科学, 2018, 40(05): 805-812.
[3]	杨小东1,2，杨平1，李燕1，刘婷婷1，王彩芬1. 基于无证书代理重签名的车载自组网消息认证方案[J]. 计算机工程与科学, 2018, 40(01): 40-44.
[4]	李丽娟，郭亚杰. 一种改进的ElGamal数字签名方案[J]. J4, 2016, 38(06): 1097-1102.
[5]	邓伦治，王祥斌，瞿云云. 高效的基于身份的签密方案[J]. J4, 2014, 36(03): 441-445.
[6]	孙华1，钟珞2，王爱民1. 标准模型下可证安全的基于身份门限环签名[J]. J4, 2013, 35(3): 92-96.
[7]	李兵,胡伟. 矢量空间秘密共享门限代理签名方案[J]. J4, 2012, 34(5): 49-52.
[8]	胡小明，王见，杨寅春. 对一个高效的基于身份的代理盲签名方案的分析和改进[J]. J4, 2012, 34(12): 34-38.
[9]	王琳杰1,韩春霞1,张秉儒2. 多重代理多重盲签名方案[J]. J4, 2012, 34(12): 56-59.
[10]	俞惠芳1，赵海兴2，王之仓1，乔小妮3. 无可信中心的自认证多代理签密方案[J]. J4, 2010, 32(8): 14-16.
[11]	李欣妍1,芦殿军2. 基于椭圆曲线密码体制的代理多重盲签名[J]. J4, 2010, 32(11): 58-59.
[12]	夏一民曹宏嘉罗军张民选. 一种需求驱动的缓冲区溢出检测算法[J]. J4, 2007, 29(1): 86-87.
[13]	张忠徐秋亮. 一种高效的不可否认门限代理签名方案的分析及改进[J]. J4, 2006, 28(9): 7-8.
[14]	谢夫娜. 基于离散对数的代理多重签名方案分析[J]. J4, 2006, 28(6): 36-37.
[15]	董贝贝徐秋亮. 防止代理签名伪造攻击的几种方案[J]. J4, 2006, 28(10): 8-10.