计算机工程 ›› 2009, Vol. 35 ›› Issue (15): 149-150.doi: 10.3969/j.issn.1000-3428.2009.15.051

• 安全技术 • 上一篇    下一篇

代理多签名方案的密码学分析与修正

刘文化1,聂永卫1,禹 勇2   

  1. (1. 济源职业技术学院计算机系,济源 454650;2. 电子科技大学计算机科学与工程学院,成都 610054)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2009-08-05 发布日期:2009-08-05

Cryptanalysis and Repair of Multi-proxy Signature Scheme

LIU Wen-hua1, NIE Yong-wei1, YU Yong2   

  1. (1. Department of Computer, Jiyuan Vocational and Technology College, Jiyuan 454650;
    2. School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu 610054)
  • Received:1900-01-01 Revised:1900-01-01 Online:2009-08-05 Published:2009-08-05

摘要: 分析Lee提出的代理多签名方案,给出一种伪造攻击,利用该攻击,一个不诚实的原始签名人在不经过其他原始签名人的同意下,可以成功伪造代理签名密钥,从而可以假冒诚实的代理签名人生成验证有效的代理多签名,威胁到代理签名人和其他原始签名人的合法权益。提出4种改进的代理密钥生成算法来修正Lee的方案,可以有效抵抗恶意原始签名人的伪造攻击。

关键词: 数字签名, 代理签名, 代理多签名

Abstract: A multi-proxy signature scheme is proposed by Lee et al. However, their scheme is insecure. A forgery attack on their multi-proxy signature scheme is proposed in this paper. Using the forgery attack, a dishonest original signer can forgery a proxy signing key on behalf of all the original signers without their agreements and produce valid multi-proxy signatures, which does harm to the benefits of the proxy signer and other original signers. Four improved proxy key generation algorithms are also proposed to repair the scheme, which can resist effectively the forgery attack of original signers.

Key words: digital signature, proxy signature, multi-proxy signature

中图分类号: