一种前向-后向安全的数字签名方案

doi:10.3969/j.issn.1001-2400.2014.02.012

J4 ›› 2014, Vol. 41 ›› Issue (2): 71-78.doi: 10.3969/j.issn.1001-2400.2014.02.012

一种前向-后向安全的数字签名方案

王明伟;胡予濮

(西安电子科技大学综合业务网理论及关键技术国家重点实验室，陕西西安 710071)

收稿日期:2012-11-25 出版日期:2014-04-20 发布日期:2014-05-30
通讯作者: 王明伟
作者简介:王明伟(1986-)，女，硕士，E-mail：ychmingwei007@163.com．
基金资助:
国家自然科学基金资助项目(61173151，9140c110201110c1102)

Forward and backward secure signature scheme

WANG Mingwei;HU Yupu

(State Key Lab. of Integrated Service Networks, Xidian Univ., Xi'an 710071， China)

Received:2012-11-25 Online:2014-04-20 Published:2014-05-30
Contact: WANG Mingwei

摘要/Abstract

摘要：

基于多变量公钥的困难性假设——有限域上求解二次多变量难题，构造了一种新的签名方案，满足性质: (1)前向安全性，保证在当前密钥泄露时对之前的签名不会造成危害; (2)后向安全性，保证当前密钥的泄露不会对未来的密钥造成影响，即不必每次检测出密钥泄露就撤销当前的密钥系统而重建新的密钥系统．通过零知识证明技术和多变量公钥密码理论，提出了基于身份识别方案的改进模型的密钥更新算法，可在满足前向安全性的基础上获得后向安全性．最后给出了该方案在随机预言机模型下的安全性证明．

关键词: 有限域上求解二次多变量难题, 零知识, 身份认证, 前向安全, 后向安全, 数字签名, 随机预言机模型

Abstract:

A new signature scheme based solely on the MQ-problem is presented, which satisfies the following properties:(1) Forward security, which means that a compromise of a key now does not necessarily expose old traffic. (2) Backward security, which means that a compromise of a key now does not necessarily expose future traffic. We do not have to revoke our public key and re-issue a new key system everytime we detect a key leak. We use two fundamental tools, such as zero knowledge proof and mulitivariate public crypto. Our basic model is Koichi Sakumoto's identifcation scheme which is transformed by parallel processing and Fiat-Shamir transforming. What is novel about our approach is the key updating algortithm, which makes our scheme preserve backward security besides the forward property. Finally, we prove that our scheme satisfies the security under the random oracle model.

Key words: MQ-problem, zero knowledge, identification scheme, forward securrity, backward security, digital signature, random oracle model

中图分类号:

TP309

王明伟;胡予濮. 一种前向-后向安全的数字签名方案[J]. J4, 2014, 41(2): 71-78.

WANG Mingwei;HU Yupu. Forward and backward secure signature scheme[J]. J4, 2014, 41(2): 71-78.

参考文献

［1］ Anderson R. Invited Lecture［C］//Proceedings of Fourth Annual Conference on Computer and Communication Security. New York: ACM Press, 1997: 1-7.
［2］ Bellare M, Miner S K. A Forward-secure Digital Signature Scheme［C］//Advances in Cryptography-CRYPTO'99. Berlin: Springer-Verlag, 1999: 431-448.
［3］ Anderson R. Two Remarks on Public-key Cryptology［R］. UCAM-CL-TR-549. Cambridge: University of Cambridge, 2000.
［4］ Abdalla M, Reyzin L. A New Forward-secure Digital Signature Scheme［C］//6th International Conference on the Theory and Application of Cryptology and Infromation Security. Berlin: Springer-Verlag, 2000: 116-129.
［5］ Back A. Non-interactive Forward Secrecy［Z］. Posting to Cypherpunks Mailing List, 1996.
［6］ Canetti R, Halevi S, Katz J. A Forward-secure Public-key Encryption Scheme［J］. Journal of Cryptology, 2007, 20: 265-294.
［7］ Kozlov A, Reyzin L. Forward-secure Signatures with Fast Key Update［C］//International Conference on Security in Communication Networks. Berlin: Springer-Verlag, 2011: 241-256.
［8］ Krawczyk H. Simple Forward-secure Signatures from Any Signature Scheme［C］//Proceedings of the Seventh ACM Conference on Computer and Communication Security. Piscataway: Association for Computing Machine, 2000.
［9］ Malkin T, Micciancio D, Miner S. Efficient Generic Forward-secure Signatures with an Unbounded Number of Time Periods［C］//Advances in Cryptology-Eurocrypt: 2332. Berlin: Springer-Verlag, 2002: 400-417.
［10］ Lin D T, Wang C I, Guan D J. A Forward-Backward Secure Signature Scheme［J］. Journal of Information Science and Engineering, 2010, 26(6): 2319-2329.
［11］ Sakumoto K, Shirai T, Hivatari H. Sony Corporation:Public-Key Identification Schemes Based on Multivariate Quadratic Polynomials［C］//CRYPTO2011. Heidelberg: Springer-Verlag, 2011: 706-723.
［12］ Garey M, Johnson D. Computers and Intractability, a Guide to the Theory of NP-completeness［M］. New York: Freeman, 1979: 128-130.
［13］ Patarin J, Goubin J. Trapdoor One-way Permutations and Multivariate Polynomials［C］//Proceedings of ICISC 1997. Berlin: Springer Verlag, 1997: 356-368.
［14］ Gene I. Forward Security Adaptive Crytography: Time Evolution［R］. National Science Foundation under Grant No.0311485. Boston: Computer Science Department, Boston University, 2004.
［15］ Hastad J, Impagliazzo R, Levin L. Construction of Pseudo-random Generator from Any One-way Function［J］. SIAM Journal on Computing, 1993, 28(4): 1364-1396.
［16］ Krawczyk H. Simple Forward-secure Signatures from Any Signature Scheme［C］//Seventh ACM Conference on Computer and Communication Security. Piscataway: Association for Computing Machine, 2000: 108-115.
［17］ Bouillaguet C, Chen H C, Cheng C M, et al. Fast Exhaustive Search for Polynomial Systems in F2［C］//International workshop on Cryptographic Hardware and Embeded Systems. Heidelberg: Springer, 2011: 203-218.
［18］ Goldreich O. Foundations of Cryptography: Volume I. Basic Tools［M］. Cambridge: Cambridge University Press, 2001.
［19］ Addalla M, An J H, Bellare M, et al. From Identification to Signatures via the Fiat-Shamir Transform: Necessary and Sufficient Conditions for Security and Forward-Security［J］. IEEE Transactions on Information Theory, 2008, 54(8): 3631-3646.
［20］ Itkis G, Reyzin J. Forward-secure Signatures with Optimal Signing and Verifying［C］//Proceedings of CRYPTO, LNCS 2139. Heidelberg: Springer, 2001: 332-354.
［21］李成, 何明星. 一个前向和后向安全的数字签名方案［J］. 武汉大学学报(理学版), 2008, (5): 557-560.
Li Cheng, He Mingxing. A Forward Secure and Backward Secure Signature Scheme［J］. Journal of Wuhan University(Natural Science Edition), 2008, (5): 557-560.
［22］邱钢, 王宏, 肖鸿, 等. 两个前向安全盲签名体制的安全性分析［J］. 西安电子科技大学学报, 2010, 37(1): 107-112.
Qiu Gang, Wang Hong, Xiao Hong, et al. Security Analysis of Two Forward-secure Blind Signature Schemes［J］. Journal of Xidian University, 2010, 37(1): 107-112.

[1]	李涵,张晨,黄荷姣,郭宇. 一种支持前向安全更新和验证的加密搜索算法[J]. 西安电子科技大学学报, 2020, 47(5): 48-56.
[2]	张永强;刘佳南;田海博. 满足便携文档格式的公平多方合同签署协议[J]. 西安电子科技大学学报, 2018, 45(1): 117-122.
[3]	付章杰;束建钢;孙星明;周璐. 利用文本鲁棒特征的零知识水印安全检测方案[J]. J4, 2015, 42(4): 176-181.
[4]	江明明;胡予濮;王保仓;刘振华;来齐齐. 格上的代理重签名方案[J]. J4, 2014, 41(2): 20-24.
[5]	刘东苏;苗美霞;马华;林锐斌;田海博. 基于无密钥泄露变色龙签名的数码防伪方案[J]. J4, 2012, 39(5): 24-29.
[6]	王凤和;胡予濮;贾艳艳. 标准模型下的格基数字签名方案[J]. J4, 2012, 39(4): 57-61+119.
[7]	肖鸿;王宏;马润年;崔捷. 随机预言模型下可证安全的门限FFS签名方案[J]. J4, 2011, 38(6): 130-133+151.
[8]	张应辉；李晖；马华. Schnorr类有序多重签名中的阈下信道的封闭协议[J]. J4, 2011, 38(3): 140-144.
[9]	邱钢;王宏;肖鸿;肖国镇. 两个前向安全盲签名体制的安全性分析[J]. J4, 2010, 37(1): 107-112+147.
[10]	明洋1;詹阳2;王育民2;庞辽军2. 一个改进的无证书签名方案 [J]. J4, 2008, 35(6): 1094-1099.
[11]	丁勇. 一种用椭圆曲线密码构建的传感网络密钥管理方案[J]. J4, 2008, 35(4): 739-742.
[12]	贾晓芸1;3;罗守山2;3;袁超伟1. 一种新的基于离散对数的签名方案 [J]. J4, 2008, 35(2): 351-355.
[13]	李用江1;2;李蔚3;朱晓妍1;葛建华1. 一个新的强RSA假设下的数字签名方案 [J]. J4, 2007, 34(4): 634-637.
[14]	张学军1;2;王东勇3;曾智勇2;尹忠海2. 一种新的具有附加特性的叛逆者追踪方案 [J]. J4, 2007, 34(2): 274-278.
[15]	司光东1;李艳平1;2;肖国镇1. 一种改进的群签名方案 [J]. J4, 2007, 34(1): 106-109.

一种前向-后向安全的数字签名方案

Forward and backward secure signature scheme

PDF (PC)

赞

可视化

被引次数

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

Metrics

本文评价

推荐阅读 0