Security analysis and improvement of new certificateless proxy signature

doi:10.3778/j.issn.1002-8331.2010.08.027

Computer Engineering and Applications ›› 2010, Vol. 46 ›› Issue (8): 96-98.DOI: 10.3778/j.issn.1002-8331.2010.08.027

• 网络、通信、安全 • Previous Articles Next Articles

Security analysis and improvement of new certificateless proxy signature

SHEN Jun-wei¹，YANG Xiao-yuan^1，2，LIANG Zhong-yin¹，CHEN Hai-bin¹

1.Engineering College of Armed Police Force，Xi’an 710086，China
2.Key Laboratory of Network & Information Security of the Ministry of Education，Xidian University，Xi’an 710071，China

Received:2008-09-18 Revised:2008-12-22 Online:2010-03-11 Published:2010-03-11
Contact: SHEN Jun-wei

一种新的无证书代理签名方案的分析与改进

申军伟¹，杨晓元^1，2，梁中银¹，陈海滨¹

1.武警工程学院，西安 710086
2.西安电子科技大学网络信息安全教育部重点实验室，西安 710071

通讯作者: 申军伟

Abstract

Abstract: This paper analyzes the security of a new certificateless proxy signature proposed by Fan Rui recently.The security of Fan Rui’s scheme relies on the CDH problem.It shows that Fan’s proxy signature reveals the private key of original signer and is insecure against a key replacement attack and malicious-but-passive KGC attack.It also gives a modified scheme.The improvement is secure against the key replacement attack and the malicious-but-passive KGC attack.This paper elaborately eliminates the defect of the original scheme and improves the efficiency of the protocol.

摘要： 樊睿等人提出了一种新的无证书代理签名方案，该方案的安全性是基于CDH困难性假设。对该代理签名方案进行了安全性分析，指出该方案不仅泄露了原始签名者的私钥，而且不能抵抗替换公钥攻击和恶意但被动的KGC攻击，从而不满足代理签名的安全性要求。同时提出了一个改进方案，改进方案不仅弥补了原方案的安全缺陷，而且改善了协议的性能。

CLC Number:

TP309

SHEN Jun-wei¹，YANG Xiao-yuan^1，2，LIANG Zhong-yin¹，CHEN Hai-bin¹. Security analysis and improvement of new certificateless proxy signature[J]. Computer Engineering and Applications, 2010, 46(8): 96-98.

申军伟¹，杨晓元^1，2，梁中银¹，陈海滨¹. 一种新的无证书代理签名方案的分析与改进[J]. 计算机工程与应用, 2010, 46(8): 96-98.

[1]	CHEN Ning，HU An-feng. Blind watermarking algorithm for color images based on wavelet transform and Fourier transform [J]. Computer Engineering and Applications, 2010, 46(9): 88-91.
[2]	XU Lu，ZHANG Hong-qi，DU Xue-hui，WANG Chao. Application system-oriented mandatory access control model [J]. Computer Engineering and Applications, 2010, 46(9): 107-110.
[3]	LU Si-mei，ZHANG Jian-lin. Improvement of SET protocol model and formal analysis via SMV [J]. Computer Engineering and Applications, 2010, 46(8): 113-116.
[4]	AN Xiao-ming¹，WANG Xiao-ming^1，2，WANG Qiao-ling¹. Role-based access control model with spatio-temporal constraint [J]. Computer Engineering and Applications, 2010, 46(7): 89-92.
[5]	LI Jie，WU Zhen-qiang，YU Lu，SUN Peng. Design of enhanced wireless trusted network accessing attestation model and its protocols [J]. Computer Engineering and Applications, 2010, 46(7): 121-124.
[6]	ZHU Ying-min¹，HUANG Sheng-ye¹，FENG Hui-li²，YE Wu². Improved security mechanism for IEEE802.16e standard [J]. Computer Engineering and Applications, 2010, 46(6): 103-106.
[7]	WANG Shi-feng¹，ZHANG Long-jun²，YANG Xiao-yuan^1，3. Internet key exchange protocol based on zero knowledge proof [J]. Computer Engineering and Applications, 2010, 46(5): 73-75.
[8]	ZHANG Tao，MU De-jun，REN Shuai，YAO Lei. Risk assessment model of information security based on risk matrix [J]. Computer Engineering and Applications, 2010, 46(5): 93-95.
[9]	LIU Lian-hao，WEN Cong-jian. Differential-algebraic attack on AES [J]. Computer Engineering and Applications, 2010, 46(5): 111-113.
[10]	GU Guo-sheng，ZHAN Yin-wei，HOU Wen-bang. Fast image scrambling algorithm based on Contourlet transform [J]. Computer Engineering and Applications, 2010, 46(4): 15-17.
[11]	WANG Tao，WANG Li-bin，MA Chang-she. Design and implementation of generic high efficient RFID authorization protocol model [J]. Computer Engineering and Applications, 2010, 46(4): 72-75.
[12]	LIU Su-nan^1，2，FANG Zhi-hong¹，LI Shu-zhi³. Audio watermarking algorithm in complex cepstrum domain based on chaotic encrypting and repeatencode [J]. Computer Engineering and Applications, 2010, 46(4): 79-82.
[13]	LI Yue-qiang. Transparent and robust audio watermarking algorithm based on DCT domain [J]. Computer Engineering and Applications, 2010, 46(3): 84-86.
[14]	MU Ya-li^1，2，ZENG Hao³，YAO Hong². Role-task based controlled delegation model [J]. Computer Engineering and Applications, 2010, 46(3): 87-89.
[15]	YAN Bo-tao，PAN Xiao-zhong，ZHANG Hao，ZHANG Tian-xiang. Re-encryption detection scheme to improved image LSB steganography method [J]. Computer Engineering and Applications, 2010, 46(2): 83-85.

Security analysis and improvement of new certificateless proxy signature

一种新的无证书代理签名方案的分析与改进

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics