紧致安全的基于身份的签名方案 |
| |
作者姓名: | 刘翔宇 刘胜利 谷大武 |
| |
作者单位: | 上海交通大学计算机科学与工程系;密码科学技术国家重点实验室;成都卫士通信息产业股份有限公司摩石实验室 |
| |
基金项目: | 国家自然科学基金(61925207,U1636217);广东省基础与应用基础研究重大项目(2019B030302008)。 |
| |
摘 要: | 本文提出了第一个紧致安全的基于身份的签名(IBS)方案.我们的构造基于Bellare等人提出的基于证书思想的通用转化方法,包括两个组件,即选择消息攻击下不可伪造安全(EUF-CMA安全)的签名方案S,和多用户场景中选择消息攻击&动态密钥窃取攻击下不可伪造安全(MU-EUF-CMAcorr安全)的签名方案S.组件S的公私钥用作IBS的主公钥和主私钥,用户id的签名私钥包含了组件S所产生的一对公私钥,以及主私钥对id和S的公钥的签名证书.用户对消息的签名包含了组件S的公钥和证书,以及S的私钥对此消息的签名.IBS的安全性可以紧致归约到组件S的EUF-CMA安全性和组件S的MU-EUF-CMAcorr安全性.最后,我们给出了组件S和S的实例化,并分别在随机预言机模型和标准模型下得到了紧致(与几乎紧致)EUF-CMA&CIA安全的IBS方案.
|
关 键 词: | 基于身份的签名方案 紧致安全 通用构造 |
Tightly Secure Identity-Based Signature Scheme |
| |
Authors: | LIU Xiang-Yu LIU Sheng-Li GU Da-Wu |
| |
Affiliation: | (Department of Computer Science and Engineering,Shanghai Jiao Tong University,Shanghai 200240,China;State Key Laboratory of Cryptology,Beijing 100878,China;Westone Cryptologic Research Center,Beijing 100070,China) |
| |
Abstract: | This paper proposes a tightly secure identity-based signature(IBS) scheme. The construction follows the certification paradigm, due to Bellare et al., which consists of two building blocks,i.e., an unforgeable signature scheme S secure against chosen message attacks(EUF-CMA security),and an unforgeable signature schemeS secure against chosen message & adaptive corruption attacks in the multi-user setting(MU-EUF-CMAcorr security). The public/private keys of signature scheme S serve as the main public/private keys of the IBS. For each user id, its signing secret key consists of a key pair of signature schemeS, and a signature of id and the public key ofS, which is served as the certificate. The final signature contains the public key ofS, the certificate, and a signature of the message underS. Security of IBS can be tightly reduced to the EUF-CMA security of S and the MU-EUF-CMAcorr security ofS. At last, we present instantiations of S andS, and obtain tightly(and almost tightly) EUF-CMA&CIA secure IBS schemes in the random oracle and the standard models,respectively. |
| |
Keywords: | identity-based signature tight security generic construction |
本文献已被 维普 等数据库收录! |
|