摘要: 对李继国等提出的群签名方案(电子学报,2011年第7期)进行分析,发现在该方案中,群管理员可以得到所有群成员的私钥,从而伪造任意群成员的签名,并且攻击者可以轻易伪造任意消息关于任意群成员的有效群签名,导致方案可被普遍伪造。在此基础上给出2个伪造攻击方法,证明群成员的签名可以被包括群管理员在内的任何敌手伪造,因此该方案不满足可追踪性,在标准模型下是不安全的。
关键词:
密码学,
数字签名,
群签名,
双线性对,
可追踪性
Abstract: This paper analyzes the security of Li et al’s group signature scheme. In this scheme, group manager can get any user’s secret key, thus it can forge any user’s group signature, and forger can get a valid group signature of any user on any message, which leads to the scheme can be forged universally. Two attacks are presented, which shows the scheme does not satisfy traceability and is not secure.
Key words:
cryptography,
digital signature,
group signature,
bilinear pairing
,
traceability
中图分类号:
黄斌, 史亮, 邓小鸿. 一个群签名方案的安全性分析[J]. 计算机工程, 2013, 39(4): 151-153.
HUANG Bin, SHI Liang, DENG Xiao-Hong. Security Analysis on a Group Signature Scheme[J]. Computer Engineering, 2013, 39(4): 151-153.