Analysis and improvement of certificateless proxy signature scheme

Abstract

Abstract: This paper analyzes a certificateless proxy signature scheme and points out it are vulnerable against two types of adversaries in certificateless cryptosystems. Type I adversary can replace the user’ public key to forge proxy delegations from any original signer to any proxy signer and compute the proxy signature; type II adversary（KGC） can generate the trapdoor system parameters according to the identity information of a pre-selected target user and then forge the proxy delegations from the target user to other users. To overcome these security problems, a new improved proxy signature scheme is proposed. Analysis shows that the new scheme has better security.

Key words: certificateless signature, proxy signature, public key replacement attacks, malicious KGC attacks, bilinear mapping

摘要： 分析了一种无证书代理签名方案，指出其针对于无证书密码系统中的两类敌手都不安全。类型I敌手可替换用户的公钥来伪造代理授权和代理签名；类型II敌手（KGC）可针对预先选择好的用户生成特殊的系统参数，然后伪造代理授权。为了克服这些安全问题，提出了一种改进的方案，分析表明，新方案具有更好的安全性。

关键词: 无证书签名, 代理签名, 公钥替换攻击, 恶意的KGC攻击, 双线性对

LIU Xiaohong, ZHANG Jianzhong. Analysis and improvement of certificateless proxy signature scheme[J]. Computer Engineering and Applications, 2014, 50(22): 115-117.

刘晓红，张建中. 对一种无证书代理签名方案的分析与改进[J]. 计算机工程与应用, 2014, 50(22): 115-117.

[1]	GE Lixia1, LI Xiao1, HE Mingxing2, LI Yarong1, LIU Xiaojian2. Improved certificateless proxy signature scheme [J]. Computer Engineering and Applications, 2017, 53(8): 92-94.
[2]	TIAN Juanhong, ZHANG Jianzhong, LI Yanping. Robust multi-proxy multi-blind signature scheme [J]. Computer Engineering and Applications, 2017, 53(1): 130-133.
[3]	ZOU Changzhi. Identity-based multi-proxy signature without bilinear pairings [J]. Computer Engineering and Applications, 2016, 52(9): 96-101.
[4]	MI Junli1, ZHANG Jianzhong2, CHEN Shouting1, LIU Fenghua1. Leakage-resilient designated verifier blind proxy signature scheme [J]. Computer Engineering and Applications, 2016, 52(22): 123-126.
[5]	LI Yarong1, LI Xiao1, HE Mingxing2, LIU Xiaojian2, GE Lixia1. Security analysis and improvement of forward secure proxy signature scheme [J]. Computer Engineering and Applications, 2016, 52(14): 110-114.
[6]	CAO Xin, WEI Shimin, ZHUO Zepeng. Security analysis of three forward secure proxy signature schemes [J]. Computer Engineering and Applications, 2015, 51(7): 98-100.
[7]	YU Jing1, LI Zhihui2. Threshold proxy multi-signature scheme [J]. Computer Engineering and Applications, 2015, 51(6): 69-71.
[8]	CHEN Lin. Cryptanalysis and improvement for two certificateless proxy signature schemes [J]. Computer Engineering and Applications, 2013, 49(7): 85-88.
[9]	GE Rongliang, GAO Dezhi, LIANG Jingling, ZHANG Yun. Security analysis and improvement of certificateless signature scheme [J]. Computer Engineering and Applications, 2013, 49(5): 96-98.
[10]	YANG Li, ZHANG Jianzhong. Analysis and improvement of new proxy signature scheme [J]. Computer Engineering and Applications, 2013, 49(22): 100-103.
[11]	HUANG Meijuan, DU Hongzhen. Provable secure ID-based threshold proxy signature scheme [J]. Computer Engineering and Applications, 2013, 49(20): 77-81.
[12]	DENG Lunzhi, WU Yunshun. Efficient identity based proxy signature [J]. Computer Engineering and Applications, 2013, 49(14): 98-100.
[13]	YU Jing1, LI Zhihui2. Certificateless threshold proxy signature scheme [J]. Computer Engineering and Applications, 2013, 49(12): 74-76.
[14]	CAO Tianqing, ZHANG Jianzhong. New certificateless threshold proxy signature scheme [J]. Computer Engineering and Applications, 2012, 48(9): 57-59.
[15]	ZHOU Ping1，2, HE Dake1. Proxy blind signature schemes with forward secure property [J]. Computer Engineering and Applications, 2012, 48(5): 51-53.

Analysis and improvement of certificateless proxy signature scheme

对一种无证书代理签名方案的分析与改进

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics