摘要： 指出了Willy Susilo等提出的基于身份的强指定验证者签名方案的安全性证明存在缺陷，对该方案的安全性给出了新的证明。在此基础上提出了一个新的可消息恢复的基于身份的强指定验证者签名方案，证明了在随机预言机下，攻击者要伪造签名相当于求解BDH问题。该文将指定验证者签名与消息恢复结合，适用于在对隐私性和认证性要求良好协调并且带宽受限的环境下对短消息进行签名。

关键词: 不可否认签名, 指定验证者, 基于身份, 消息恢复

Abstract: As there is some objection about the security attestation of the scheme proposed by Willy Susilo etc., another method to attest is given. Based on the new attestation, an ID-based strong designated verifier signature scheme with message recovery is proposed. Forging signatures with random oracle equals to solve the BDH problem. Its the first time to combine the designated verifier signature with message recovery, which adapts for signing short message with high harmony requirement of privacy and authentication and limited bandwidth.

Key words: Undeniable signature, Designated verifier, ID-based, Message recovery

中图分类号: 

• TP309