基于SM9算法的可链接环签名方案  

作　　者：王伊婷 万武南 张仕斌[1,2,3] 张金全 秦智[1,2,3] WANG Yiting;WAN Wunan;ZHANG Shibin;ZHANG Jinquan;QIN Zhi(School of Cybersecurity,Chengdu University of Information Technology,Chengdu Sichuan 610225,China;Advanced Cryptography and System Security Key Laboratory of Sichuan Province(Chengdu University of Information Technology),Chengdu Sichuan 610225,China;Industrial College of Cyberspace Security,Chengdu University of Information Technology,Chengdu Sichuan 610203,China)

机构地区：[1]成都信息工程大学网络空间安全学院,成都610225 [2]先进密码技术与系统安全四川省重点实验室(成都信息工程大学),成都610225 [3]成都信息工程大学网络空间安全产业学院,成都610203

出　　处：《计算机应用》2024年第12期3709-3716,共8页journal of Computer Applications

基　　金：国家重点研发计划“网络空间安全治理”重点专项(2022YFB3103103);四川省重点研发计划项目(2022YFS0571,2021YFSY0012);成都市科技局重点研发支撑计划项目(2023-XT00-00002-GX,2022-YF05-00115-SN)。

摘　　要：针对基于身份的可链接环签名(IBLRS)方案存在开销过大且不满足技术自主化要求的问题,提出一种基于SM9算法的可链接环签名(LRS)方案。首先,将环中签名者的身份标识发送到密钥生成中心(KGC)生成相应私钥;其次,结合该私钥与SM9算法生成签名,并保持该私钥生成方式与SM9算法中私钥生成方式一致;最后,绑定签名者私钥与事件标识构造一个无需复杂计算操作的可链接标签,提升所提算法的效率。在随机预言机模型下,证明所提方案具有正确性、不可伪造性、无条件匿名性和可链接性。同时,基于所提算法设计一种多公证人跨链方案,以实现高效且安全的跨链交互。与IBLRS算法相比,所提方案仅需4次双线性配对操作,在计算开销和通信开销上分别减少了39.06%和51.61%。方案性能分析表明,所提方案减少了计算开销和通信开销,并满足技术的自主可控性。Aiming at the problem that the Identity-Based Linkable Ring Signature(IBLRS)scheme has excessive overhead and does not meet the requirements of technical autonomy,a Linkable Ring Signature(LRS)scheme based on SM9 algorithm was proposed.Firstly,the identifier of the signer in the ring was sent to the Key Generation Center(KGC)to generate the corresponding private key.Secondly,the private key was combined with SM9 algorithm to generate a signature,and this private key generation method was consistent with the private key generation method in SM9 algorithm.Finally,the signers private key and the event identifier were bound to construct a linkable label without need of complex calculation operations,which improved the efficiency of the proposed algorithm.Under the random oracle model,it was proved that the proposed scheme has correctness,unforgeability,unconditional anonymity and linkability.At the same time,a multi-notary cross-chain scheme was designed on the basis of the proposed algorithm to achieve efficient and safe cross-chain interaction.Compared with the IBLRS algorithm,the proposed scheme only requires 4 bilinear pairing operations,which reduces the computational overhead and communication overhead by 39.06%and 51.61%respectively.Performance analysis of the scheme shows that the proposed scheme reduces computing overhead and communication overhead,and satisfies the autonomous controllability of the technology.

关 键 词：SM9算法 可链接环签名 基于身份 区块链隐私保护 随机预言机模型 

分 类 号：TP309.7[自动化与计算机技术—计算机系统结构]