Certificateless Parallel Key-Isolated Aggregate Signature Scheme in Healthcare Networks

doi:10.3778/j.issn.1002-8331.2208-0250

Abstract

Abstract: The application of wireless sensor networks in the medical field brings great convenience to doctors and patients. The authenticity and integrity of medical data becomes a major problem in the medical industry due to the destruction of patient privacy information during the transmission process. To solve this problem, a certificateless aggregate signature scheme is proposed to protect patient privacy information. However, most schemes cannot resist fully chosen-key attacks and face the key exposure problem. Therefore, this paper proposes a certificateless parallel key-isolated aggregate signature scheme that can resist fully chosen-key attacks. The scheme is based on blockchain technology for data sharing and identity tracking, uses the real-time nature of edge computing to deal with high delay problems in wireless sensor networks, and uses parallel key isolation methods to solve the problem of key exposure. Under the elliptic curve discrete logarithm problem, the scheme is proved to be unforgeable under the random oracle model, and the hash-based strong collision-resistant proofs that the scheme can resist fully chosen-key attacks. Efficiency analysis using MIRACL library shows that this scheme is more efficient than other related schemes in each stage, and has lower communication overhead.

Key words: edge computing, certificateless aggregate signature, parallel key isolation, fully chosen-key attack

摘要： 无线传感器网络在医疗领域的应用，为医生和患者带来了极大的便利。由于传输过程中会导致患者隐私信息被破坏，医疗数据的真实性和完整性成为了医疗行业一大难题。为解决此难题，无证书聚合签名方案被提出保护患者隐私信息。然而，大多数方案都无法抵御完全选择密钥攻击，并存在密钥暴露问题。为此，提出了可抵御完全选择密钥攻击的无证书并行密钥隔离聚合签名方案。该方案基于区块链技术进行数据共享和身份追踪，利用边缘计算的实时性处理无线传感器网络中高延迟问题，同时使用并行密钥隔离方法解决密钥暴露问题。在随机谕言机模型下，基于椭圆曲线离散对数问题证明该方案的不可伪造性，基于哈希的强抗碰撞性证明方案可抵御完全选择密钥攻击。使用MIRACL库进行效率分析，表明该方案在各阶段运行效率要优于其他相关方案，同时具有较低的通信开销。

关键词: 边缘计算, 无证书聚合签名, 并行密钥隔离, 完全选择密钥攻击

MENG Tong, GUO Rui, WANG Yicheng, LIU Yingfei. Certificateless Parallel Key-Isolated Aggregate Signature Scheme in Healthcare Networks[J]. Computer Engineering and Applications, 2024, 60(1): 289-300.

蒙彤, 郭瑞, 王翊丞, 刘颖菲. 医疗网络中无证书并行密钥隔离聚合签名方案[J]. 计算机工程与应用, 2024, 60(1): 289-300.

References

[1] REN J, YU G, HE Y, et al. Collaborative cloud and edge computing for latency minimization[J]. IEEE Trans on Vehicular Technology, 2019, 68(5): 5031-5044.
[2] 李波, 侯鹏, 牛力, 等. 基于软件定义网络的云边协同架构研究综述[J]. 计算机工程与科学, 2021, 43(2): 242-257.
LI B, HOU P, NIU L, et al. Survey of cloud-edge collaborative architecture research based on software defined network[J]. Computer Engineering and Science, 2021, 43(2): 242-257.
[3] 李艺昕, 张应辉, 胡凌云, 等. 在线问诊环境下细粒度双边访问控制方案[J]. 计算机工程与应用, 2022, 58(17): 139-147.
LI Y X, ZHANG Y H, HU L Y, et al. Fine-grained bilateral access control scheme in online consultation environment[J]. Computer Engineering and Applications, 2022, 58(17): 139-147.
[4] YUCE M R, NG S W P, MYO N L, et al. Wireless body sensor network using medical implant band[J]. Journal of Medical Systems, 2007, 31(6): 467-474.
[5] LIU J, CAO H, LI Q, et al. A large-scale concurrent data anonymous batch verification scheme for mobile healthcare crowd sensing[J]. IEEE Internet of Things Journal, 2018, 6(2): 1321-1330.
[6] BONEH D, GENTRY C, LYNN B, et al. Aggregate and verifiably encrypted signatures from bilinear maps[C]//International Conference on the Theory and Applications of Cryptographic Techniques. Berlin, Heidelberg: Springer, 2003: 416-432.
[7] SHEN L, MA J, LIU X, et al. A secure and efficient ID-based aggregate signature scheme for wireless sensor networks[J]. IEEE Internet of Things Journal, 2016, 4(2): 546-554.
[8] XIONG H, GUAN Z, CHEN Z, et al. An efficient certificateless aggregate signature with constant pairing computations[J]. Information Sciences, 2013, 219: 225-235.
[9] TU H, HE D, HUANG B. Reattack of a certificateless aggregate signature scheme with constant pairing computations[J]. The Scientific World Journal, 2014: 343715.
[10] CHENG L, WEN Q, JIN Z, et al. Cryptanalysis and improvement of a certificateless aggregate signature scheme[J]. Information Sciences, 2015, 295: 337-346.
[11] 王竹, 杨思琦, 李凤华, 等. 高效可证明安全的无证书有序聚合签名方案[J]. 通信学报, 2022, 43(5): 58-67.
WANG Z, YANG S Q, LI F H, et al. Efficient and provably-secure certificateless sequential aggregate signature scheme[J]. Journal on Communications, 2022, 43(5): 58-67.
[12] KUMAR P, SHARMA V. On the security of certificateless aggregate signature scheme in vehicular ad hoc networks[M]//Soft computing: theories and applications. Singapore: Springer, 2018: 715-722.
[13] WU L, XU Z, HE D, et al. New certificateless aggregate signature scheme for healthcare multimedia social network on cloud environment[J]. Security and Communication Networks, 2018: 2595273.
[14] ZHAN Y, WANG B. Cryptanalysis of a certificateless aggregate signature scheme for healthcare wireless sensor network[J]. Security and Communication Networks, 2019: 6059834.
[15] XIE Y, LI X, ZHANG S, et al. iCLAS: an improved certificateless aggregate signature scheme for healthcare wireless sensor networks[J]. IEEE Access, 2019, 7: 15170-15182.
[16] GAYATHRI N B, THUMBUR G, KUMAR P R, et al. Efficient and secure pairing-free certificateless aggregate signature scheme for healthcare wireless medical sensor networks[J]. IEEE Internet of Things Journal, 2019, 6(5): 9064-9075.
[17] LIU J, WANG L, YU Y. Improved security of a pairing-free certificateless aggregate signature in healthcare wireless medical sensor networks[J]. IEEE Internet of Things Journal, 2020, 7(6): 5256-5266.
[18] HASHIMOTO K, OGATA W. Unrestricted and compact certificateless aggregate signature scheme[J]. Information Sciences, 2019, 487: 97-114.
[19] SHIM K A. Forgery attacks on two provably secure certificateless signature schemes[J]. Information Sciences, 2020, 521: 81-87.
[20] YE X, XU G, CHENG X, et al. Certificateless-based anonymous authentication and aggregate signature scheme for vehicular ad hoc networks[J]. Wireless Communications and Mobile Computing, 2021: 6677137.
[21] WANG H, WANG L, ZHANG K, et al. A conditional privacy-preserving certificateless aggregate signature scheme in the standard model for VANETs[J]. IEEE Access, 2022, 10: 15605-15618.
[22] YANG W, WANG S, MU Y. An enhanced certificateless aggregate signature without pairings for E-Healthcare system[J]. IEEE Internet of Things Journal, 2020, 8(6): 5000-5008.
[23] WU G, ZHANG F, SHEN L, et al. Certificateless aggregate signature scheme secure against fully chosen-key attacks[J]. Information Sciences, 2020, 514: 288-301.
[24] DODIS Y, KATZ J, XU S, et al. Key-insulated public key cryptosystems[C]//International Conference on the Theory and Applications of Cryptographic Techniques. Berlin, Heidelberg: Springer, 2002: 65-82.
[25] DODIS Y, KATZ J, XU S, et al. Strong key-insulated signature schemes[C]//International Workshop on Public Key Cryptography. Berlin, Heidelberg: Springer, 2003: 130-144.
[26] WAN Z, LAI X, WENG J, et al. Certificateless key-insulated signature without random oracles[J]. Journal of Zhejiang University-Science A, 2009, 10(12): 1790-1800.
[27] REDDY P V, BABU A R, GAYATHRI N B. Pairing-based strong key-insulated signature scheme[J]. International Journal of Information and Computer Security, 2022, 18(1/2): 148-164.
[28] HANAOKA G, HANAOKA Y, IMAI H. Parallel key-insulated public key encryption[C]//International Workshop on Public Key Cryptography. Berlin, Heidelberg: Springer, 2006: 105-122.
[29] HOU Y, XIONG H, HUANG X, et al. Certificate-based parallel key-insulated aggregate signature against fully chosen key attacks for industrial internet of things[J]. IEEE Internet of Things Journal, 2021, 8(11): 8935-8948.