检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]吉首大学数学与计算机科学学院,湖南吉首416000 [2]西南交通大学信息安全与国家计算网格实验室,四川成都610031 [3]中山大学计算机科学系,广东广州510275
出 处:《四川大学学报(工程科学版)》2008年第2期91-95,共5页Journal of Sichuan University (Engineering Science Edition)
基 金:国家自然科学基金资助项目(60503005);湖南省自然科学基金资助项目(07JJ6110);湖南省教育厅资助项目(07C522)
摘 要:Xue和Cao提出了一种基于自验证公钥的门限代理签名方案,然而,该方案是不安全的。给出了对该方案一种攻击:攻击者获得一个合法的原始签名人发送给代理签名人的签名了的授权证书以及代理签名人生成的一个有效的代理签名后,能够伪造出一个新的对相同消息的代理签名,而原始签名人变为攻击者自己,由于验证者并不能验证代理签名人到底是代表谁生成了代理签名,这样,攻击者就获得了与合法原始签名人相同的权益。特别地,代理签名人代表原始签名人生成的门限代理签名可以被转化为普通的门限签名。分析了该方案存在安全漏洞的原因并提出了改进措施,改进措施能有效地弥补原方案存在的安全缺陷。Xue and Cao proposed a threshold proxy signature scheme using self-certified public keys, but this scheme was insecure. An attack against this scheme was proposed. By this attack, an adversary could forge an illegal proxy signature. That is, based on the proxy signature generated by proxy signers on a message on behalf of an original signer, an attacker could forge a valid threshold proxy signature on the same message which seemed generated by these proxy signers on behalf of this attacker himself. After producing a forged proxy signature, the adversary had the same authority with the original signer to the proxy signer, and the verifier could not distinguish which one was the real original signer. Especially, this attack was used to change proxy signatures into threshold signatures belonging to the group that actually generated the proxy signatures. The causes of the security deficiencies existing in this scheme were analyzed and an improvement which could resolve these security deficiencies was further prooosed.
关 键 词:门限代理签名 代理签名 门限签名 自验证公钥 基于身份
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.249