电子投票协议下的基于格的可链接门限环签名  被引量：4

作　　者：庄立爽 陈杰[1,2] 王启宇[1] ZHUANG Li-Shuang;CHEN Jie;WANG Qi-Yu(State Key Laboratory of ISN,Xidian University,Xi’an 710071,China;Cryptography Research Center,Xidian University,Xi’an 710071,China)

机构地区：[1]西安电子科技大学ISN国家重点实验室,西安710071 [2]西安电子科技大学西电密码研究中心,西安710071

出　　处：《密码学报》2021年第3期402-416,共15页Journal of Cryptologic Research

基　　金：国家密码发展基金(MMJJ20180219);国家自然科学基金(U1736111)。

摘　　要：电子投票因其便捷的特性,日益受到人们的青睐.如何保证电子投票中的匿名性、不可重用性、公开可验证性成为一个值得关注的问题.本文基于格密码为环签名增加抗量子性,应用消息块共享技术和填充排列技术构造门限环签名以适应一种新的电子投票场景,以及为环签名增加了可链接性质.本文提出一种基于格的可链接门限环签名方案(LTRS),LTRS方案在实现中央权力分散的同时满足签名的匿名性,其可链接性保证签名可被公共验证是否由同一用户生成.通过安全性分析,证明了方案在标准模型下的正确性、不可区分源匿名性、不可伪造性和可链接性.通过性能分析,证明了签名算法是多项式时间内可计算的,并且通过改变门限值t和环成员数N的数值,给出了与其它方案的数据对比结果.基于LTRS方案和比特承诺技术,本文提出一种新的电子投票协议,该协议可解决多类别投票问题.本文对新的电子投票协议的安全性进行分析,证明该协议满足电子投票协议的八个安全特性以及坚固性、实用性和抗量子性.E-voting has a significant advantage in convenience.It is important to consider its anonymity,non-reusability and public verifiability in the future.Based on the lattice cryptography,this paper makes signatures to be resistant against the quantum attack.The techniques of message block sharing and pad-then-permute are used to construct threshold ring signatures with linkable prop-erty,which are used to construct a new e-voting protocol.This paper proposes a lattice-based linkable threshold ring signature(LTRS).The LTRS scheme achieves the decentralization of the central au-thority while meeting the signature anonymity property.The linkability ensures that the signatures can be verified whether they are generated by the same signer.Through security analysis,it is proved that the LTRS is correct,anonymous in the sense of indistinguishable source,unforgeable and linkable under the standard security model.Moreover,it is proved that the LTRS can be computed in polyno-mial time.By changing the values of t and N,the results of LTRS are compared with other existing schemes.Based on the LTRS scheme and bit commitment scheme,a new e-voting protocol is proposed,which can solve the problem of multi-class voting.The security of the new e-voting protocol is proved.It is shown that the e-voting protocol also meets robustness,practicality,and quantum resistance.

关 键 词：格 环签名 电子投票 

分 类 号：TP309.7[自动化与计算机技术—计算机系统结构]