计算机工程与应用 ›› 2011, Vol. 47 ›› Issue (16): 114-116.

• 网络、通信、安全 • 上一篇    下一篇

一种门限代理签名方案的安全性分析及改进

杨长海   

  1. 南昌陆军学院 科文教研室,南昌 330103
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2011-06-01 发布日期:2011-06-01

Security analysis and improvement of threshold proxy signature scheme

YANG Changhai   

  1. Department of Science and Arts,Nanchang Military Academy,Nanchang 330103,China
  • Received:1900-01-01 Revised:1900-01-01 Online:2011-06-01 Published:2011-06-01

摘要: 对Xue等提出的基于自认证公钥的门限代理签名方案进行了安全性分析。指出了该方案存在的两种伪造攻击:恶意的原始签名者在获得一个有效签名后,能够伪造出一个新的有效签名;恶意的代理签名者在对一个消息m的签名过程中,能够伪造出对另一个消息[m′]的有效签名。分析了攻击产生的原因,并给出了改进方案以弥补该方案的安全性缺陷。

关键词: 自认证公钥, 门限签名, 代理签名, 门限代理签名

Abstract: The security of the Xue et al.’s threshold proxy signature scheme using self-certified public key is analyzed.Two forgery attacks against this scheme are proposed.A malicious original signer can generate a new valid signature after he gets a valid signature,and a malicious proxy signer can derive a valid signature on message[m′]in the signature generation procedure for message m.The causes of the attacks existing in this scheme are analyzed and an improvement which can resolve these security deficiencies is further proposed.

Key words: self-certified public key, threshold signature, proxy signature, threshold proxy signature