标准模型下基于身份的多接收者签密方案

为了克服随机预言机模型下可证安全的加密方案在实际应用中并不安全的情况,提出了一种标准模型下基于身份的多接收者签密方案.方案利用椭圆曲线上的双线性对,将标准模型下基于身份的加密算法和多接收者签名算法相结合,建立基于身份的多接收者签密方案构架和安全概念,形成了具有安全、高效性的多接收者签密方案.先分析了方案的正确性,然后基...     

基于自认证的多接收者签密方案

基于多接收者签密和自认证密码系统理论,使用双线性对提出了一个基于自认证的多接收者签密方案,并在ECDL问题和BDH问题的难解性下证明了其安全性.所提方案在验证公钥真实性时,不需要额外的证书;可信机构不知道用户的私钥.与已有方案相比,该方案具有计算效率高、通信成本低等优点,更适合于在实际中应用.     

基于椭圆曲线的自认证多代理签密方案

在椭圆曲线离散对数问题的难解性下,结合多代理签名和自认证签密的特点,提出了一种基于椭圆曲线的自认证多代理签密方案.新方案不仅具有密钥短、速度快、安全性高等优点,而且克服了基于证书的公钥体系下由于公钥证书的存在而带来的一系列开销问题,同时完全阻止了权威机构伪造多代理签密.     

一种适于Ad hoc网络恶意节点处理的多接收者签密算法

基于身份的多接收者签密算法是基于身份签密算法的扩展,是近来研究的热点.首先基于双线性对提出一个基于身份的多接收者签密算法,并对其安全性和效率进行了分析和比较;结果表明:在随机预言机模型下,该算法是可被证明安全的,而且其计算量和传输量小、效率高,特别适合Ad hoc网络的安全通信.最后,以处理Ad hoc网络中恶意节点为例,阐述了将基于身份的多接收者签密算法用于Ad hoc网络安全通信的方法.同时,这种签密算法的提出能更好地满足实际应用的高安全需求,具有一定应用价值.     

对一类基于身份签密方案的分析及改进

文章通过对签密方案的安全性分析,发现2个方案有共同的缺陷,即不满足公开验证性及不能抵抗不诚实接收者的一般性伪造攻击;在此基础上,针对2个原方案分别给出了改进方案,弥补了原方案的缺陷,并在随机语言模型下,对改进方案进行了安全性证明。结果表明,改进后的方案不但可公开验证、防伪造,而且其安全性更高。     

基于身份的强壮门限签密方案

基于椭圆曲线双线性对的特殊性质,提出了一些假定密钥生成中心（PKG）是可信任的身份基密码方案,但在现实环境中这个假设并不总是成立的．为了克服这一缺陷,本文使用门限技术设计了一个安全的身份基签密方案．该方案中,门限技术不仅应用在系统主密钥的管理上,而且还使用在群签名的过程中,因而它能够达到可靠的安全性并能够在一定的门限下抵抗恶意攻击．     

具有隐私性保护的基于身份的多接收者加密方案

多接收者加密可以被用于很多重要场合,如先付费电视系统、流媒体服务等,这些应用中,只有授权或者付费的用户才能获得服务。针对现有基于身份的多接收者加密方案存在的暴露接收者身份,计算代价过高等问题,提出了一个具有隐私性保护的多接收者加密方案。新方案密文中不包含接收者身份列表,以保护接收者隐私;每个接受者在解密前便可验证自己是不是授权用户,避免大量不必要的解密开销。对比现有方案,本文方案真正意义上实现了接收者匿名性,并且加解密效率优势明显,可以用于不安全和开放网络环境中的敏感消息广播。     

基于身份的接收门限环签密方案

签密能够以较低的通信成本同时完成认证和加密2种功能.为了同时实现匿名加密、认证和门限解密3种功能,提出了基于身份的接收门限环签密方案,并在随机预言模型下证明了其安全性.在这个方案中,任何人能任意选择n-1个成员,加上他自己构成一个群.然后代表这个群生成一个签密,把密文发送给特定m个人,只有至少其中t≤m个人合作才能恢复消息.本案在签密阶段只需要1次双线性对计算,解签密阶段也只需要3次双线性对计算.     

前向安全的无证书多代理签密方案

为提高通信效率、尽可能地减少密钥泄露带来的损失,基于无证书密码体制并结合密钥不断更新的思想,提出了一种新的具有前向安全性的无证书多代理签密方案。新方案中,即使某段时间的代理密钥丢失,攻击者也不能伪造该段时间以前的签密,同时,能有效地防止无证书密码体制中公钥替换和恶意但被动的秘钥生成中心（key generation centre,KGC）攻击。经证明,本方案安全性能较好、通信效率相对较高,实用性较强。     

基于身份的环签密方案

目的 研究如何设计安全、高效的基于身份的环签密方案.方法 首先提出了一个高效的基于身份的签名方案,给出了其安全性证明.其次,基于该签名方案,构造了一个基于身份的环签密方案.结果 该环签密方案能够使消息发送者以完全匿名的方式发送消息,且可以同时实现保密性和认证性两种功能,在计算双线性Diffie-Hellman假设下证明了该方案可以抵抗适应性选择密文攻击.结论 与已有的基于身份的环签密相比,本文方案效率更高,且消息的扩张长度大大降低,非常适用于传输带宽受限的环境.     

An efficient identity-based anonymous signcryption scheme

Signcryption is a cryptographic primitive that performs encryption and signature in a single logical step more efficiently than sign-then-encrypt approach. Till now, various kinds of signcryption schemes have been proposed. Among them, the requirement of signcrypter＇s privacy protection is needful in some practical applications. In this paper, a new identity-based anonymous signcryption scheme from hilinear pairings, which is the organic combination of identity-based ring signature and encryption scheme, is proposed. The proposed scheme is indistinguishable against the chosen ciphertext attack under the Decisional Bilinear Diffie-Hellman assumption in the random oracle model. Its unforgeability relies on the computational Diffieellman problem. Compared with the previous schemes, the new scheme is more efficient in computation.     

一类门限代理签密方案的分析与改进

2003年,李等指出Chan-Wei的门限代理签密方案不满足强不可伪造性、强不可否认性和强识别性,同时提出了一个改进方案.笔者给出了一种替换私钥攻击方案,指出李等的方案也不满足强不可伪造性,指定接收人可以利用替换私钥生成有效的代理签名.为克服李等方案的安全性缺陷,给出了一个门限代理签密改进方案.     

An improved identity-based proxy ring signature scheme

Proxy ring signature schemes have been shown to be useful in various applications, such as electronic polling, electronic payment, etc. In this paper, we point out that Lang‘s scheme is unreasonable and propose an improved Identity-based proxy ring scheme from bilinear pairings which is reasonable and overcomes the deficiencies of Lang‘s scheme. Our scheme can prevent the original signer from generating the proxy ring signature, thus the profits of the proxy signer are guaranteed. In addition, our scheme satisfies all the security requirements of proxy ring signature, I.e. Signer-ambiguity, non-forgeability, verification, non-deniability and distinguishability. As compared with Zhang‘s scheme, our scheme is a computational efficiency improvement for signature verification because the computational cost of bilinear pairings required is reduced from O(n) to O(1).     

An Identity-Based Strong Designated Verifier Proxy Signature Scheme

0 IntroductionIn 1996 ,Jakobsson, Sako and Impagliazzo introduced anew pri mitive called designated verifier proofs[1]. Suchproofs enable a prover Signy to designate who will be con-vinced by a proof .Furthermore,Jakobsson,Sako and Impa-gliazzo proposed a designated verifier signature. Designatedverifier signatures provide authentication of a message, with-out having the non-repudiation property of traditional signa-tures . They convince one-and only one-specified recipient thatthey are va…     

New multivariate-based certificateless hybrid signcryption scheme for multi-recipient

With the development of quantum computer,multivariate public key cryptography withstanding quantum attack has became one of the research focus.The existed signcryption schemes from discrete logarithm and bilinear paring are facing the serious threats.Based on multivariate public key cryptography,a new certificateless multi-receiver hybrid signcryption scheme has been proposed.The proposal reduced the cipher text and could handle arbitrary length messages by employing randomness reusing and hybrid encryption,as well as keeping security.In the random oracle model,the scheme’s confidentiality could withstand the IND-CCA2 adversary and its unforgeability could withstand the UF-CMA adversary under the hardness of multivariate quadratic(MQ)problem and isomorphism of polynomials(IP)assumption.It has less computation overhead and higher transmission efficiency than others.It reduced 33%cipher data compared with the existed similar scheme.     

一种新的基于身份的代理盲签名

结合代理签名和盲签名，利用双线性映射，构造了一种新的基于身份的代理盲签名方案．通过分析表明，该方案不仅能满足代理盲签名所要求的所有性质，而且其效率也优于已有文献。     

Efficient ID-Based Proxy Blind Signature Scheme

0 Introduction Ablind signature, primitively introduced by Chaum[1], plays a central role in cryptographic protocols such as e-voting,e-payment that require user anonym- ity[2,3]. Such a signature allows a user to obtain a signa- ture of a message in a wa…     

新的基于身份的代理盲签名方案及其应用*

代理盲签名技术是指由原始签名者授权的代理签名者在不知晓待签名的消息的具体内容的情况下完成签名的技术。代理盲签名技术可以保证消息的匿名性,将签名权外放,减轻签名者的负担,同时能保证签名的安全性,常被用于电子商务,电子现金交易和电子投票方面。提出了一个新的基于身份的代理盲签名方案,论证了方案的正确性和安全性,证实了该方案具有较高的效率,并阐述了其在电子现金领域的应用,尤其是在使用移动终端进行购物方面的应用。     

Feasibility analysis of two identity-based proxy ring signature schemes

Recently, proxy ring signature schemes have been shown to be useful in various applications, such as electronic polling, electronic payment, etc. Although many proxy ring signature schemes have been pro-posed, there are only two identity-based proxy ring signature schemes have been proposed until now, i. e., Cheng＇s scheme and Lang＇s scheme. It＇s unlucky that the two identity-based proxy ring signature schemes are unfeasible. This paper points out the reasons why the two identity-based proxy ring signature schemes are unfeasible. In order to design feasible and efficient identity-based proxy ring signature schemes from bilinear pairings, we have to search for other methods.