Yi-Ping Luo,Tzonelih Hwang

DOI: https://doi.org/10.48550/arXiv.1512.00714

2015-12-02

Abstract:Recently, Liu et al. (Quantum Inf Process (2014) 13:491-502) proposed an arbitrated quantum signature (AQS) scheme, where a signature receiver (Bob) can verify the signer's signature through the help of a trusted arbitrator. However, this paper shows that a malicious Bob can perform the existential forgery of the signature under the chosen message attack without being detected.

Quantum Physics

Li-Hong Guo,Hai-Tao Wu,Qing Yang

DOI: https://doi.org/10.2991/icwcsn-16.2017.32

2016-01-01

Abstract:Proxy signature schemes have been suggested for use in a number of applications, so the security of proxy signature scheme is more and more important. However, at present, almost all the proxy signature schemas were proven secure in the random oracle model, which has received a lot of criticism. Recently, Yu et al. proposed a designated verifier proxy signature scheme without random oracles by using Waters hashing technique. The formal models and a strictly logical process were provided in this schema. But Kang et al. show some attacks on Yu et al.s scheme and offer its insecurity proof. In this paper, in order to overcome the weaknesses in Yu et al.s scheme we make supplements on it and make it secure resist Kang et al.s attacks.

Xiangfu Zou,Daowen Qiu

DOI: https://doi.org/10.48550/arXiv.1003.2337

2010-03-11

Abstract:A digital signature is a mathematical scheme for demonstrating the authenticity of a digital message or document. For signing quantum messages, some arbitrated quantum signature schemes have being proposed. However, in the existing literature, arbitrated quantum signature schemes depend on entanglement. In this paper, we present two arbitrated quantum signature schemes without utilizing entangled states in the signing phase and the verifying phase. The first proposed scheme can preserve the merits in the existing schemes. Then, we point out, in this scheme and the prior schemes, there exists a problem that Bob can repudiate the integrality of the signatures. To conquer this problem, we construct another arbitrated quantum signature scheme without using quantum entangled states but using a public board. The new scheme has three advantages: it does not utilize entangled states while it can preserve all merits in the existing schemes; the integrality of the signature can avoid being disavowed by the receiver; and, it provides a higher efficiency in transmission and reduces the complexity of implementation. Furthermore, we present a technique such that the quantum message can keep secret to the arbitrator in a arbitrated quantum signature scheme.

Quantum Physics

Qin Li,Chengqing Li,Chunhui Wu,Dongyang Long,Changji Wang

DOI: https://doi.org/10.48550/arXiv.0806.0557

2020-06-15

Abstract:In this paper, an efficient arbitrated quantum signature scheme is proposed by combining quantum cryptographic techniques and some ideas in classical cryptography. In the presented scheme, the signatory and the receiver can share a long-term secret key with the arbitrator by utilizing the key together with a random number. While in previous quantum signature schemes, the key shared between the signatory and the arbitrator or between the receiver and the arbitrator could be used only once, and thus each time when a signatory needs to sign, the signatory and the receiver have to obtain a new key shared with the arbitrator through a quantum key distribution protocol. Detailed theoretical analysis shows that the proposed scheme is efficient and provably secure.

Quantum Physics,Cryptography and Security

Marcos Curty,Norbert Lütkenhaus

DOI: https://doi.org/10.1103/PhysRevA.77.046301

2008-06-05

Abstract:We investigate the quantum signature scheme proposed by Zeng and Keitel [Phys. Rev. A 65, 042312 (2002)]. It uses Greenberger-Horne-Zeilinger (GHZ) states and the availability of a trusted arbitrator. However, in our opinion the protocol is not clearly operationally defined and several steps are ambiguous. Moreover, we argue that the security statements claimed by the authors are incorrect.

Quantum Physics

Qin Li,Wai Hong Chan,Chunhui Wu,Zhonghua Wen

DOI: https://doi.org/10.1007/s10773-013-1751-8

2013-06-16

Abstract:Quantum signature (QS) is used to authenticate the identity of the originator, ensure data integrity and provide non-repudiation service with unconditional security. Depending on whether a trusted third party named arbitrator is involved or not, QS is classified as arbitrated QS and true QS. This paper studies existence problem about the two kinds of QS and contributes to two points: 1) a basic framework is provided to analyze the possibility of arbitrated QS on signing quantum messages; 2) disagreement between the impossibility of true QS and an existing true QS scheme is solved.

Quantum Physics

Tianyuan Zhang,Xiangjun Xin,Lei Sun,Chaoyang Li,Fagen Li

DOI: https://doi.org/10.1007/s11128-024-04257-5

IF: 1.965

2024-02-06

Quantum Information Processing

Abstract:The security of most quantum signatures cannot be proved with security model under chosen-message attack. No formal proof can prove that their security is fully dependent on the basic quantum theory. Based on the orthogonal quantum state and key-controlled quantum hash function, an arbitrated quantum signature is proposed. In this scheme, the signatory produces the quantum signature by quantum-encrypting the output of key-controlled quantum hash function. The signature verification is performed by decrypting the signed message and comparing the decrypted message with the output of the key-controlled quantum hash function. The security of the proposed scheme depends on the indistinguishability of the unknown quantum sequence. Its unforgeability can be formally proved with security model under chosen-message attack. Therefore, its security can be supported by the formal proof. On the other hand, in the proposed scheme, no entangled state is used. It also has better qubit efficiency as well.

physics, multidisciplinary,quantum science & technology, mathematical

Siyu Xiong,Bangying Tang,Hui Han,Jinquan Huang,Mingqiang Bai,Fangzhao Li,Wanrong Yu Zhiwen Mo,Bo Liu

2024-06-12

Abstract:Quantum digital signature is used to authenticate the identity of the signer with information theoretical security, while providing non-forgery and non-repudiation services. In traditional multi-receiver quantum digital signature schemes without an arbitrater, the transferability of one-to-one signature is always required to achieve unforgeability, with complicated implementation and heavy key consumption. In this article, we propose an arbitrated quantum digital signature scheme, in which the signature can be verified by multiple receivers simultaneously, and meanwhile, the transferability of the signature is still kept. Our scheme can be simplified performed to various quantum secure networks, due to the proposed efficient signature calculation procedure with low secure key consumption and low computation complexity, by employing one-time universal hashing algorithm and one-time pad encryption scheme. The evaluation results show that our scheme uses at least two orders of magnitude less key than existing signature schemes with transferability when signing files of the same length with the same number of receivers and security parameter settings.

Quantum Physics,Cryptography and Security

Ling Zhang,Jia-Hao Zhang,Xiang-Jun Xin,Chao-Yang Li

DOI: https://doi.org/10.1142/s0217984924502191

2024-02-15

Modern Physics Letters B

Abstract:Modern Physics Letters B, Ahead of Print. In order to solve the security of electronic transactions on limited goods, some quantum blind double signature (QBDS) protocols were proposed. In existing QBDS protocols, all participants must have specific quantum computing capabilities. Realistically, high cost of quantum devices may hinder people from using the QBDS protocol. Therefore, we propose a semi-quantum arbitrator blind double signature (SQABDS) scheme. In this scheme, the sender (signer) and the receiver both are classical participants, which can relatively reduce the dependence on quantum hardware. The introduction of blind signers can protect the privacy of electronic transactions, the introduction of semi-trusted arbitrator can relax the strong assumption about the trustworthiness of the arbitrator, for the arbitrator cannot forge the signature. In addition, the SQABDS scheme can be used to sign classical messages directly without performing any quantum swapping tests or quantum gate operations. Finally, the analysis shows that our scheme is securer and its quantum cost is relatively lower.

physics, condensed matter, applied, mathematical

Wei Zhang,Daowen Qiu,Xiangfu Zou,Paulo Mateus

DOI: https://doi.org/10.48550/arXiv.1612.03088

2017-04-02

Abstract:A broadcasting multiple blind signature scheme based on quantum GHZ entanglement has been presented recently by Tian et al. It is said that the scheme's unconditional security is guaranteed by adopting quantum key preparation, quantum encryption algorithm and quantum entanglement. In this paper, we prove that each signatory can get the signed message just by an intercept-resend attack. Then, we show there still exists some participant attacks and external attacks. Specifically, we verify the message sender Alice can impersonate each signatory to sign the message at will, and so is the signature collector Charlie. Also, we demonstrate that the receiver Bob can forge the signature successfully, and with respect to the external attacks, the eavesdropper Eve can modify the signature at random. Besides, we discover Eve can change the signed message at will, and Eve can impersonate Alice as the message sender without being discovered. In particular, we propose an improved scheme based on the original one and show that it is secure against not only the attacks mentioned above but also some collusion attacks.

Quantum Physics

Fan He,Xiangjun Xin,Chaoyang Li,Fagen Li

DOI: https://doi.org/10.1007/s11128-023-04255-z

IF: 1.965

2024-02-08

Quantum Information Processing

Abstract:Recently, Tian et al. (Quantum Inf. Process., 20(6), 217(2021)) proposed an efficient semi-quantum secret-sharing protocol of specific bits. In their protocol, the dealer can split a specific secret such that two classical agents can efficiently and corporately reconstruct the secret by applying the simple operations such as Z-base measurement and reflecting operation. The qubit efficiency of their protocol can be up to 50%. Unfortunately, according to our security analysis, their protocol is vulnerable to the eavesdropping attacks. We prove that the eavesdropper can steal the dealer's secret without being detected by applying the double-controlled NOT attack (DCNA) to the quantum channels. Then, some improvements are proposed, which can overcome the security flaw of the old protocol. We prove the improved protocol has enhanced security against DCNA, intercept–resend attack, entangle–measure attack and Trojan horse attack. In particular, the security proof shows that inserting decoy photons into the quantum message and reordering the quantum sequence is very helpful in detecting the adversary's entangle–measure attack, even the adversary uses two auxiliary probes to eavesdrop the quantum channel. Furthermore, the improved eavesdropping check strategy can effectively increase the length of the shared secret.

physics, multidisciplinary,quantum science & technology, mathematical

Qiu Shujing,Xin Xiangjun,Zheng qian,Li Chaoyang,Li Fagen

DOI: https://doi.org/10.1007/s10773-024-05618-7

2024-03-25

International Journal of Theoretical Physics

Abstract:Recently, Qiu et al. proposed a semi-quantum voting scheme based on the ring signature (International Journal of Theoretical Physics, 60: 1550–1555(2021)), in which the signer and verifier only need to measure the received particles with Z-basis and perform some classical simple encryption/decryption operations on the classical message. Although their scheme is very efficient, it cannot resist the eavesdropping attacks and forgery attack. In this paper, first, the eavesdropping attacks on Qiu et al.'s scheme are proposed. Second, we show the forgery attack on their scheme. Then, based on the GHZ state, an improved semi-quantum electronic voting protocol is proposed. In the new protocol, the eavesdropping check technology not only can be used to detect the eavesdropping, but also can be used to share a random number. By using the random number and the shared key, the signed vote is encrypted so that it is infeasible for the adversary to trace the signer's identity and forge a valid signed vote. The new protocol overcomes all the security drawbacks of the old protocol. What is more, it has better practicability and efficiency than the similar semi-quantum voting protocols.

physics, multidisciplinary

Juan Miguel Arrazola,Petros Wallden,Erika Andersson

DOI: https://doi.org/10.26421/QIC16.5-6-3

2015-05-28

Abstract:Digital signatures are widely used in electronic communications to secure important tasks such as financial transactions, software updates, and legal contracts. The signature schemes that are in use today are based on public-key cryptography and derive their security from computational assumptions. However, it is possible to construct unconditionally secure signature protocols. In particular, using quantum communication, it is possible to construct signature schemes with security based on fundamental principles of quantum mechanics. Several quantum signature protocols have been proposed, but none of them has been explicitly generalized to more than three participants, and their security goals have not been formally defined. Here, we first extend the security definitions of Swanson and Stinson (2011) so that they can apply also to the quantum case, and introduce a formal definition of transferability based on different verification levels. We then prove several properties that multiparty signature protocols with information-theoretic security -- quantum or classical -- must satisfy in order to achieve their security goals. We also express two existing quantum signature protocols with three parties in the security framework we have introduced. Finally, we generalize a quantum signature protocol given in Wallden-Dunjko-Kent-Andersson (2015) to the multiparty case, proving its security against forging, repudiation and non-transferability. Notably, this protocol can be implemented using any point-to-point quantum key distribution network and therefore is ready to be experimentally demonstrated.

Quantum Physics,Cryptography and Security

Luo-Jia Ma,Ming-Shuo Sun,Chun-Hui Zhang,Hua-Jian Ding,Xing-Yu Zhou,Jian Li,Qin Wang

DOI: https://doi.org/10.1088/1674-1056/ad8871

2024-10-20

Chinese Physics B

Abstract:Quantum digital signature (QDS) can guarantee the information-theoretical security of a signature with the fundamental laws of quantum physics. However, most current QDS protocols do not take source security into account, leading to an overestimation of the signature rate. In this paper, we propose to utilize Hong-Ou-Mandel interference to characterize the upper-bound of the source imperfections, and further to quantify information leakage from potential side-channels. Additionally, we combine decoy-state methods and finite-size analysis in analyzing the signature rate. Simulation results demonstrate the performance and feasibility of our approach. Our current work can improve the practical security of QDS systems, thereby promoting their further networked applications.

physics, multidisciplinary

University of Science and Technology of China,Xue Kaiping,Li Shangbin,Yu Nenghai

DOI: https://doi.org/10.1007/s11128-021-03162-5

IF: 1.965

2021-01-01

Quantum Information Processing

Abstract:Although most of the quantum signatures can be verified by a designated receiver, they do not match the classical designated verifier signature since an indistinguishable signature cannot be efficiently simulated. To adapt quantum signatures in specific environments like E-voting and E-bidding, several quantum designated verifier signature (QDVS) schemes have been proposed. However, it is still too complicated and infeasible to implement existing QDVS schemes in practice. In this paper, we propose a practical QDVS scheme without entanglement for E-voting applications. It only involves the quantum processing part of the underlying quantum key distribution (QKD) to generate correlated key strings, which protects the communication against potential eavesdroppers. The proposed scheme can be easily and efficiently deployed over the existing QKD network without complicated quantum operations. We further show that our QDVS scheme satisfies the required main security requirements and has the capability against several common attacks.

Rohit Chatterjee,Kai-Min Chung,Xiao Liang,Giulio Malavolta

DOI: https://doi.org/10.48550/arXiv.2112.06078

2021-12-12

Abstract:This work revisits the security of classical signatures and ring signatures in a quantum world. For (ordinary) signatures, we focus on the arguably preferable security notion of blind-unforgeability recently proposed by Alagic et al. (Eurocrypt'20). We present two short signature schemes achieving this notion: one is in the quantum random oracle model, assuming quantum hardness of SIS; and the other is in the plain model, assuming quantum hardness of LWE with super-polynomial modulus. Prior to this work, the only known blind-unforgeable schemes are Lamport's one-time signature and the Winternitz one-time signature, and both of them are in the quantum random oracle model. For ring signatures, the recent work by Chatterjee et al. (Crypto'21) proposes a definition trying to capture adversaries with quantum access to the signer. However, it is unclear if their definition, when restricted to the classical world, is as strong as the standard security notion for ring signatures. They also present a construction that only partially achieves (even) this seeming weak definition, in the sense that the adversary can only conduct superposition attacks over the messages, but not the rings. We propose a new definition that does not suffer from the above issue. Our definition is an analog to the blind-unforgeability in the ring signature setting. Moreover, assuming the quantum hardness of LWE, we construct a compiler converting any blind-unforgeable (ordinary) signatures to a ring signature satisfying our definition.

Quantum Physics,Cryptography and Security

Fei Gao,Fen-Zhuo Guo,Qiao-Yan Wen,Fu-Chen Zhu

DOI: https://doi.org/10.1007/s11433-008-0065-y

2008-02-15

Abstract:From the perspective of information theory and cryptography, we analyze the security of two quantum dialogue protocols and a bidirectional quantum secure direct communication (QSDC) protocol, and point out that the transmitted information would be partly leaked out in them. That is, any eavesdropper can elicit some information about the secrets from the public annunciations of the legal users. This phenomenon should have been strictly forbidden in a quantum secure communication. In fact, this problem exists in quite a few recent proposals and, therefore, it deserves more research attention in the following related study.

Quantum Physics

Huang Xiu-Ju,Li Zhen-Zhen,Li Zi-Chen

DOI: https://doi.org/10.1007/s10773-022-05171-1

2022-01-01

International Journal of Theoretical Physics

Abstract:Characterized by integrity and non-repudiation, digital signatures play an essential role in real life. Quantum digital signatures, which outperform classical types generally in safety, have been widely used in secure communications. In this paper, a novel quantum signature scheme based on quantum encryption, XOR encryption and secret sharing without entanglement is designed. Furthermore, it can be extended to a quantum multi-signature scheme. Unlike existing schemes, it is more efficient in guaranteeing safety, more practical and does not need to prepare a large number of entanglements or operations.

Min-Xi Rong,Xiang-Jun Xin,Fa-Gen Li,,

DOI: https://doi.org/10.7498/aps.69.20200244

IF: 0.906

2020-01-01

Acta Physica Sinica

Abstract:Most of the classical designated verifier signature schemes are insecure against quantum adversary. In this paper, a quantum signature scheme for the designated verifier is proposed. In our scheme, during the initialization phase, the partners share secret keys by performing the quantum key distribution protocol. On the other hand, by performing the quantum direct communication protocol, the key generator center shares secret keys with the signer and the designated verifier, respectively. The key generator center generates a particle sequence of Bell state and distributes the particles between the signer and the designated verifier. During the signature generation phase, the signer encrypts the particle sequence by the secret keys and Hardmard operators. After that, the signer performs the controlled unitary operations on the encrypted particle sequence so as to generate the quantum signature. The designated verifier can simulate the quantum signature by performing the same symmetric signing steps as that performed by the original signer. Hence, the quantum signature signed by the true signer is the same as the one simulated by the receiver, which makes our scheme possess the designated properties. During the signature verification phase, the designated verifier performs the controlled unitary operations on the quantum signature and obtains the quantum ciphertexts. After that, the designated verifier decrypts the quantum ciphertexts by the symmetric secret keys and Hardmard operators so that the quantum signature can be verified. Our signature is secure against forgery attack, inter-resending attacks and Trojan horse attack. Because the trace distance between the density operators of different quantum signatures is zero, the information-theoretical security of our quantum signature scheme can be proved. The unconditionally secure quantum key distribution protocol and the one-time pad encryption algorithm can guarantee the security of the secret keys shared by the partners. What is more, the security assumption about the key generation center is weak. That is, it is not necessary to assume that the key generation center should be fully trusted. On the other hand, in our scheme, the quantum one-way function is not used. To generate a quantum signature, the signer need not prepare for entangled particle sequence. To verify a quantum signature, the verifier need not apply any state comparison to the received particles. The qubit efficiency is 100%. Therefore, our scheme has the advantages in the security and efficiency over the other quantum signature schemes for the designated verifier.

physics, multidisciplinary

Chun‐Wei Yang

DOI: https://doi.org/10.1002/andp.202400260

2024-10-30

Annalen der Physik

Abstract:This study examines challenges in semi‐quantum signature (SQS) protocols, identifying quantum storage issues in Xia et al.'s SQS protocol. A new SQS protocol using pre‐shared keys enhances eavesdropper detection and authentication, advancing secure communication. This study tackles critical issues in semi‐quantum signature (SQS) protocols to enhance security and efficiency. It revisits Xia et al.'s SQS protocol, which uses EPR steering for security but introduces inconsistencies in a semi‐quantum environment. Xia et al. assume that both the signatory and arbitrator have full quantum capabilities, while the verifier only has partial capabilities, making them a classical participant. However, their protocol requires the verifier to perform eavesdropping checks, necessitating quantum storage, which is not aligned with a semi‐quantum environment. The study proposes a novel SQS protocol using EPR steering and single photons, with pre‐shared keys to determine photon arrangements to address this. This ensures that only the communicating parties know the inspection and message transmission locations, solving the quantum storage issue and enabling efficient eavesdropper detection and identity authentication. This new protocol adheres to semi‐quantum principles and sets a foundation for future advancements in quantum cryptography and secure communication.

physics, multidisciplinary