Security analysis of efficient certificateless signature scheme

doi:10.3778/j.issn.1002-8331.2011.02.006

Computer Engineering and Applications ›› 2011, Vol. 47 ›› Issue (2): 19-20.DOI: 10.3778/j.issn.1002-8331.2011.02.006

• 博士论坛 • Previous Articles Next Articles

Security analysis of efficient certificateless signature scheme

HU Guozheng¹，HAN Lansheng²，XIA Xiangsheng³

1.School of Science，Wuhan University of Technology，Wuhan 430070，China
2.School of Computer，Huazhong University of Science and Technology，Wuhan 430074，China
3.Department of Computer，Wuhan Polytechnic University，Wuhan 430023，China

Received:2010-10-29 Revised:2010-11-30 Online:2011-01-11 Published:2011-01-11
Contact: HU Guozheng

对一个高效无证书签名方案的安全性分析

胡国政¹，韩兰胜²，夏祥胜³

1.武汉理工大学理学院，武汉 430070
2.华中科技大学计算机学院，武汉 430074
3.武汉工业学院计算机系，武汉 430023

通讯作者: 胡国政

Abstract

Abstract: Recently，Zhang et al. has proposed an efficient certificateless signature scheme and has given a formal security proof of the scheme.In this paper，it shows that the proposed scheme is insecure against public key replacement attacks，that is，an adversary can forge a valid signature for any message of any user under public key replacement attacks and the attack method is showed in detail.It is also pointed out that there exist fatal proof flaws in its security proof，and the security proof flaws is the adversary must know the secret key of the substituted public key in proving the security by the forking technique of Rafael and Ricardo.It is found that these flaws exist in other literature，and the flaws reasons are analyzed and the improvement measures are put forward.

Key words: certificateless signature, public key replacement attack, forking technique, bilinear pairing

摘要： 对张玉磊等提出的高效无证书签名方案和该方案的安全性证明进行分析，证明该方案在公钥替换攻击下是不安全的，指出它的安全性证明存在严重缺陷。利用公钥替换攻击，敌手可以伪造任何用户对任意消息的签名，给出了详细的攻击方法。安全性证明的缺陷是，在利用Rafael和Ricardo分叉技术证明无证书签名方案在公钥替换攻击下安全性时，要求敌手知道所替换公钥对应的私钥。指出这种安全性证明缺陷在其他文献中也存在，分析了这种缺陷产生的原因，提出了改进措施。

关键词: 无证书签名, 公钥替换攻击, 分叉技术, 双线性对

CLC Number:

TP309

HU Guozheng¹，HAN Lansheng²，XIA Xiangsheng³. Security analysis of efficient certificateless signature scheme[J]. Computer Engineering and Applications, 2011, 47(2): 19-20.

胡国政¹，韩兰胜²，夏祥胜³. 对一个高效无证书签名方案的安全性分析[J]. 计算机工程与应用, 2011, 47(2): 19-20.

[1]	TONG Le, HAO Rong, YU Jia. Secure Outsourcing Scheme for Bilinear Pairing Based on Single Untrusted Server [J]. Computer Engineering and Applications, 2020, 56(9): 131-135.
[2]	LI Yanjun, WANG Shubei, YANG Xiaotong, CAO Yisen. Lightweight NFC Security Authentication Scheme Based on Mobile Terminal [J]. Computer Engineering and Applications, 2020, 56(16): 84-89.
[3]	XU Hailin1, LU Yang2. Searchable public key encryption secure against keyword guessing attacks [J]. Computer Engineering and Applications, 2018, 54(24): 108-115.
[4]	GE Lixia1, LI Xiao1, HE Mingxing2, LI Yarong1, LIU Xiaojian2. Improved certificateless proxy signature scheme [J]. Computer Engineering and Applications, 2017, 53(8): 92-94.
[5]	LIU Jiajia, LIU Jianhua. Fuzzy attribute-based signcryption scheme with constant length ciphertext [J]. Computer Engineering and Applications, 2017, 53(5): 128-133.
[6]	XU Hailin1, LU Yang2. Efficient certificate-based proxy re-encryption scheme [J]. Computer Engineering and Applications, 2017, 53(14): 80-86.
[7]	ZHANG Min, DU Weizhang. Publicly verifiable and renewable multi-secret sharing scheme with self-selecting sub-secret [J]. Computer Engineering and Applications, 2016, 52(9): 71-77.
[8]	ZHANG Jiao, HE Yong, LI Xiong. Cryptanalysis and improvement of two verifiable ring signature schemes [J]. Computer Engineering and Applications, 2016, 52(8): 115-119.
[9]	ZHANG Min, DU Weizhang. Publicly verifiable and periodically renewable multi-secret sharing scheme [J]. Computer Engineering and Applications, 2016, 52(2): 117-126.
[10]	LI Yarong1, LI Xiao1, HE Mingxing2, LIU Xiaojian2, GE Lixia1. Security analysis and improvement of forward secure proxy signature scheme [J]. Computer Engineering and Applications, 2016, 52(14): 110-114.
[11]	HU Jianghong1, DU Hongzhen1, ZHANG Jianzhong2. Analysis and improvement of certificateless aggregate signature scheme [J]. Computer Engineering and Applications, 2016, 52(10): 80-84.
[12]	CHEN Hong1, ZHENG Yanyan1, XIAO Zhenjiu1，2. Certificateless-based two-party authenticated key agreement protocol for multiple PKG environment without bilinear pairing [J]. Computer Engineering and Applications, 2015, 51(7): 74-79.
[13]	ZHANG Zhiming, LI Ping, XIONG Xiaoyong. Efficient false data filtering scheme for wireless sensor networks [J]. Computer Engineering and Applications, 2015, 51(24): 78-85.
[14]	ZHANG Jianzhong, YANG Li. Cryptography analysis and improvement on certificateless proxy blind signature scheme [J]. Computer Engineering and Applications, 2014, 50(4): 90-93.
[15]	LIU Xiaohong, ZHANG Jianzhong. Analysis and improvement of certificateless proxy signature scheme [J]. Computer Engineering and Applications, 2014, 50(22): 115-117.

Security analysis of efficient certificateless signature scheme

对一个高效无证书签名方案的安全性分析

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics