摘要： 研究一种消息恢复型数字签名方案，该方案不需要hash函数和消息冗余就能抵抗伪造攻击。讨论已有的攻击方法和一种能够抵抗这些攻击的改进方案。在保持改进方案安全性的基础上，进行进一步的性能优化。在典型参数设置情况下( , )，优化方案的签名长度仅为原先的44%，计算效率提高了61%，传输效率提高了56%。

关键词: 数字签名, 消息恢复, 伪造攻击

Abstract: This paper investigates a digital signature scheme with message recovery, which is claimed to resist forgery attacks without hash functions and message redundancies. Some attacks and an effective improvement on this scheme are analyzed. A further improvement to shorten the signed signature is presented. The improvement keeps the security properties and makes the scheme more efficient. When and , the improved length of the signed signature is only 44% of the original, which raises computation efficiency by 61% and communication efficiency by 56 %.

Key words: digital signature, message recovery, forgery attack

中图分类号: 

• TP309.7