摘要： 签密方案可以同时实现保密和认证，且实现代价小于加密和签名之和，但大多数签密方案都没有严格的安全证明。为此，基于椭圆曲线群上的困难问题提出一个可证明安全的签密方案。方案仅需要一次双线性对运算，实现快速。在标准模型下，证明该方案既具有密文不可区分性与签名不可伪造性，也具有不可否认性、前向安全性和公开可验证性。

关键词: 可证明安全, 签密, 标准模型, 公开可验证性, 前向安全性

Abstract: A signcryption scheme can realize signature and encryption simultaneously, and its cost is smaller than the sum of signature and encryption. However, most signcryption schemes do not have strict security proof. This paper proposes a signcryption scheme based on difficult problems of elliptic curve group. The scheme is efficient and only needs one pair operation. It proves that the scheme is semantic secure and unforgeable in the standard model. Moreover, the scheme has non-repudiation, forward security and public verification.

Key words: provably secure, signcryption, standard model, public verification, forward security

中图分类号: 

• TP309