作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程

• 安全技术 • 上一篇    下一篇

一种服务器辅助验证聚合签名方案的安全性分析及改进

杨小东,李亚楠,周其旭,高国娟,王彩芬   

  1. (西北师范大学 计算机科学与工程学院,兰州 730070)
  • 收稿日期:2016-01-21 出版日期:2017-01-15 发布日期:2017-01-13
  • 作者简介:杨小东(1981—),男,副教授、博士,主研方向为密码学、云计算安全;李亚楠、周其旭、高国娟,硕士研究生;王彩芬,教授、博士生导师。

Security Analysis and Improvement of a Sever-aided Aggregate Verification Signature Scheme

YANG Xiaodong,LI Yanan,ZHOU Qixu,GAO Guojuan,WANG Caifen   

  1. (College of Computer Science and Engineering,Northwest Normal University,Lanzhou 730070,China)
  • Received:2016-01-21 Online:2017-01-15 Published:2017-01-13

摘要: 为提高服务器辅助验证聚合签名的安全性,在共谋攻击和自适应选择消息攻击下,提出一种新的服务器辅助验证聚合签名的安全模型。分析了牛淑芬等人(计算机应用研究,2015年第7期)提出的基于聚合思想的服务器辅助验证签名方案的安全性,发现该方案无法抵抗服务器与非法签名者的共谋攻击。针对该安全性缺陷,在新的安全性定义下提出一种改进方案,并在共谋攻击和自适应选择消息攻击下证明了新方案是安全的。分析结果表明,该方案能有效降低签名验证算法的计算复杂度,并具有固定的聚合签名长度。

关键词: 服务器辅助验证聚合签名, 共谋攻击, 半可信服务器, 非法签名者, 双线性对

Abstract: To improve the security of server-aided aggregate verification signature,a new security model of server-aided aggregate verification signature against collusion and adaptive chosen message attacks is presented.It analyzes the security of server-aided aggregate verification scheme proposed by Niu et al (Application Research of Computers,2015,No.7),and finds that this scheme cannot resist collusion attack between a server and a signature forger.In view of security shortcomings,an improved scheme is proposed under the new security definition.The proposed scheme is proven to be secure under collusion attack and adaptive chosen message attack.Analysis results show that the new scheme can effectively reduce computational complexity of signature verification algorithm,and it has the fixed length of aggregate signature.

Key words: server-aided aggregate verification signature, collusion attack, half-trusted server, signature forger, bilinear pairing

中图分类号: