抗量子计算的多变量盲签名方案  被引量：7

作　　者：俞惠芳 付帅凤 YU Hui-Fang;FU Shuai-Feng(School of Cyberspace Security,Xi’an University of Posts&Telecommunications,Xi’an 710121,China)

机构地区：[1]西安邮电大学网络空间安全学院,陕西西安710121

出　　处：《软件学报》2021年第9期2935-2944,共10页Journal of Software

基　　金：陕西省自然科学基金基础研究计划(2020JZ-54);西安邮电大学研究生创新基金(CXJJLY2018076)。

摘　　要：盲签名是一种特殊的数字签名,可广泛应用于各种匿名场合.目前,大多数盲签名的安全性主要基于大整数分解问题或离散对数问题的难解性.然而,实用量子计算机的即将诞生会使得传统的盲签名不再安全,而且量子算法的出现对传统的盲签名亦提出了挑战.因此,构造能够防御量子计算攻击的盲签名方案具有重要的意义.多变量公钥密码是后量子密码的主要候选者之一.在多变量公钥密码和盲签名的理论基础上,设计了一种新颖的多变量公钥密码体制下的盲签名方案.该密码方案借助另一非线性可逆变换L:Fr→Fr将签名的公私钥分离,减少了公私钥之间的线性关系,提高了盲签名的安全性.分析表明:该密码方案不仅具有盲性、不可伪造性和不可追踪性,而且还具有计算复杂度低及抗量子计算攻击的优点.Blind signature is a special digital signature,which is widely used in various anonymity environments.At present,the security of most blind signature schemes is mainly based on the intractability of large integer factoring(LIF)or discrete logarithm(DL)problems.However,with the birth of practical quantum computers,the traditional public key cryptosystem will be unsecure;moreover,the quantum algorithms make it face severe challenges.Hence,it is of great value to construct blind signature schemes that can resist the quantum computing attacks.One of main candidates of post-quantum cryptosystems is multivariate public key cryptosystem(MPKC).On the basis of the theory of MPKC and blind signature,a post-quantum blind signature scheme is proposed based on MPKC.The proposed cryptographic scheme separates the public and private keys of the signature by using another nonlinear reversible transformation L:Fr→Fr,which reduces the linear relationship between the public and private keys.Accordingly,it improves the security of the blind signature scheme.Analysis shows that this cryptographic scheme has the blindness,unforgeability,and untraceability;in addition,it has the merits of low computational complexity and resisting quantum computing attacks.

关 键 词：多变量 盲签名 非满射中心映射 后量子安全 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]