计算机工程与应用 ›› 2013, Vol. 49 ›› Issue (5): 96-98.

• 网络、通信、安全 • 上一篇    下一篇

无证书签名方案的分析及改进

葛荣亮,高德智,梁景玲,张  云   

  1. 山东科技大学 信息科学与工程学院,山东 青岛 266510
  • 出版日期:2013-03-01 发布日期:2013-03-14

Security analysis and improvement of certificateless signature scheme

GE Rongliang, GAO Dezhi, LIANG Jingling, ZHANG Yun   

  1. College of Information Science and Engineering, Shandong University of Science and Technology, Qingdao, Shandong 266510, China
  • Online:2013-03-01 Published:2013-03-14

摘要: 对一个无证书签名方案进行安全性分析,指出该方案不能抵抗公钥替换攻击和恶意的KGC攻击,即攻击者可以通过替换签名者的公钥来伪造任意消息的签名,恶意的KGC(Key Generation Center)可以获取用户的私钥。分析结果显示该方案不能满足无证书签名方案的安全性要求,同时为了应对这两种攻击,提出了改进的方案。

关键词: 无证书签名, 公钥替换攻击, 恶意密钥生成中心(KGC)攻击, 双线性对

Abstract: This paper analyzes a certificateless signature scheme, and points out the scheme can’t resist to the public key replacement attack and the malicious KGC(Key Generation Center) attack. The attacker can forge the signature for any message by substituting the public key of the signer. The malicious KGC can get the private key. The analysis shows that the scheme can not satisfy the safety requirements of the certificateless signature. Meanwhile the improvement measure is proposed to resist these attacks.

Key words: certificateless signature, public key replacement attack, malicious Key Generation Center(KGC) attack, bilinear pairing