Li-Hong Guo,Hai-Tao Wu,Qing Yang

DOI: https://doi.org/10.2991/icwcsn-16.2017.32

2016-01-01

Abstract:Proxy signature schemes have been suggested for use in a number of applications, so the security of proxy signature scheme is more and more important. However, at present, almost all the proxy signature schemas were proven secure in the random oracle model, which has received a lot of criticism. Recently, Yu et al. proposed a designated verifier proxy signature scheme without random oracles by using Waters hashing technique. The formal models and a strictly logical process were provided in this schema. But Kang et al. show some attacks on Yu et al.s scheme and offer its insecurity proof. In this paper, in order to overcome the weaknesses in Yu et al.s scheme we make supplements on it and make it secure resist Kang et al.s attacks.

Qi XIE,XiuYuan YU,WenHao LIU,DeRen CHEN,GuiLin WANG,JiYi WU

DOI: https://doi.org/10.1360/112011-915

2012-01-01

Scientia Sinica Informationis

Abstract:Mutual authentication between the user and the public cloud is essential requirement for the user to access the public cloud in cloud computing. In 2011, Juang et al. proposed a first authentication scheme based on proxy signature. The advantage of the scheme is that the user only needs to register on his home service cloud (HSC), and can pass through the authentication of the public cloud with the help of his HSC. However, their scheme has three weaknesses: 1) the users HSC needs to update the users public key in each session to protect the users privacy; 2) HSC may suffer from network jam when many users in the same HSC need to register on different public clouds simultaneously; and 3) a secret key should be shared between HSC and visiting cloud. To overcome these weaknesses, a provably secure convertible proxy signcryption for privacy preserving is proposed. Based on this scheme, a novel one-round authentication protocol is proposed, which the user only needs to register on his HSC, and can pass through the authentication of the visiting cloud without the help of his HSC. On the other hand, the proposed protocol can provide some nice properties, such as user privacy protection, non-repudiation, without updating the users public key, and secret key does not have to be shared between HSC and visiting cloud. In addition, the proposed scheme is provably secure in the random oracle model, and is more efficient than Juang et al.s scheme.

Huafei Zhu,Lixin Ran,Yumin Wang

IF: 1.019

1999-01-01

Chinese Journal of Electronics

Abstract:Cryptographic hash functions are very important for cryptographic protocols such as signature scheme and message authentication. Based on the pioneer work of X. Lai et al., a new framework of hash algorithm is developed in this paper. In our hash scheme, an extra pseudorandom keystream generator is not needed which may be more conveniently for practical use. We have proved that the security of the new hash scheme is equivalent to that of feedback shift registers (FSRs) controlled by 2m - bit security keys.

Qi Xie,Deren Chen

DOI: https://doi.org/10.1109/icie.2010.292

2010-01-01

Journal of Networks

Abstract:To use the network services provided by multiple servers in mobile wireless network, a hash function and smart card based multi-server authentication scheme without verification tables and servers' public keys is proposed. The new protocol has many advantages, such as no encryption, signature, verification tables, timestamp, and public keys directory.

Chuanhua Zhou,Baohua Zhao,Gong Li

DOI: https://doi.org/10.1109/iccias.2006.295310

2006-01-01

Abstract:Digital signature technology is very important in today's e-commercial environment. To ensure the security of digital signatures, one-way hash function has recently been widely used. In this paper, a new method of constructing the one-way hash function is proposed on the basis of chaotic theory. Firstly, digital signature technology is introduced. Secondly, after a simply explanation of one-way hash function, the process and algorithm of applying the Henon-like map to the construction of a one-way hash function is depicted. And then, the security of the hash function obtained is analyzed. Finally, this method is exemplified by an application case, which indicates that this novel function is sensitive to initial conditions and irreversible, simple to construct, and easy to practice, thus applicable to digital signature field of e-commerce security

LI Bing,YUAN Jian,WANG Jian,WANG Yue

DOI: https://doi.org/10.3321/j.issn:1000-0054.2009.01.016

2009-01-01

Abstract:A digital signature scheme based on multi-dimensional Hash chains was developed to reduce the computations needed to secure routing of wireless ad-hoc networks to improve their feasibility.A ad-hoc wireless routing security protocol based on this scheme is also provided.The algorithm uses the modular exponentiation in the RSA(Rivest,Shamir,Adleman)scheme to construct multi-dimensional Hash chains to generate the digital signatures.The computations are reduced by using smaller exponents.The computations are reduced about 20% compared with the traditional RSA scheme when using a 1 024-bit key.The security capacity of this scheme still relies on the RSA algorithm and the Hash function.This scheme and protocol can enhance the routing security of ad-hoc wireless networks.

Jie Liu,Jianhua Li

DOI: https://doi.org/10.1109/isa.2008.37

2008-01-01

Abstract:Digital signature schemes based on public-key cryptosystems generally permit existential forgery, except the schemes are equipped with some message formatting mechanisms, such as using hash functions or padding redundancies. In 2004, Chang et al. proposed a new digital signature scheme, and claimed the scheme without using any hash function or padding any redundancy can resist forgery attacks. However, many attacks on Chang et al.’s scheme were presented. Kang et al. also gave an effective improvement to resist these forgery attacks. In this letter, we gave a further improvement to shorten the signed signature. Our improvement keeps the security of Kang et al.’s scheme and makes it more efficient in computation and communication.

Fang Yu

DOI: https://doi.org/10.54254/2755-2721/16/20230855

2023-01-01

Abstract:In the past years, digital signature development has rapidly with new products combined with blockchain, named distribute networks, and quantum computers, while there plays a vitally important role in file authorization and verification. In combination with various new technologies, digital signatures present a vigorous vitality, and new algorithms are widely used in varieties of scenarios including banking, financial services, and insurance (BFSI), education, E-government, healthcare, and the military. In this case, there is no paper illustrating a summary of those new digital signature applications, which is the aim of this paper working on. This paper indicates the technology details of digital signatures and blockchain. And the paper discusses which digital signature algorithms are used in different fields to give an overview of the relationship between algorithms and scenarios. Furthermore, the paper demonstrates the comparison in the most commonly used digital signature algorithm containing RivestShamirAdleman (RSA) algorithms, Lamport algorithms, Elliptic Curve Digital Signature Algorithm (ECDSA), and Edwards-curve Digital Signature Algorithm (EdDSA) algorithms on their difference in performance.

Muhammad Asghar Nazal,Reza Pulungan,Mardhani Riasetiawan

DOI: https://doi.org/10.22146/ijccs.47267

2019-07-31

IJCCS (Indonesian Journal of Computing and Cybernetics Systems)

Abstract:Data security is a very important compilation using cloud computing; one of the research that is running and using cloud technology as a means of storage is G-Connect. One of the developments made by the G-Connect project is about data security; most of the problems verification of the data sent. In previous studies, Keccak and RSA algorithms have implemented for data verification needs. But after a literature study of other algorithms that can make digital signatures, we found what is meant by an algorithm that is better than RSA in rectangular speeds, namely Digital Signature Algorithm (DSA).DSA is one of the key algorithms used for digital signatures, but because DSA still uses Secure Hash Algorithm (SHA-1) as an algorithm for hashes, DSA rarely used for data security purposes, so Keccak is used instead of the hash algorithm on DSA. Now, Keccak become the standard for the new SHA-3 hash function algorithm. Because of the above problems, the focus of this research is about data verification using Keccak and DSA. The results of the research are proven that Keccak can run on DSA work system, obtained a comparison of execution time process between DSA and RSA where both use Keccak.

English Else

Guo‐Cai Wang

2010-01-01

Abstract:Hash chains are widely used for entity authentication or data-origin authentication in the field of information safety.However,finite length of a Hash chain limits its implementation.A two-way authentication signature scheme based on self-updating Hash chains is proposed.To avoid the computing complexity of the traditional public key algorithm,the scheme adopts Hash function to perform the authentication signature and significantly improves the speed of execution.The scheme achieves the automatic and smooth self-updating of Hash chain during the authentication process,and realizes the purpose of infinite utilization.In combination with the two-way authentication mechanism,the scheme can effectively resist the attack of replay and go-between,and enhance the security of the scheme.

Fengying Li,Qingshui Xue,Jiping Zhang,Zhenfu Cao

DOI: https://doi.org/10.1109/CHINACOM.2009.5339886

2009-01-01

Abstract:In a (t, n) threshold proxy signature scheme, one original signer delegates a group of n proxy signers to sign on behalf of the original signer. When the proxy signature is created, at least t proxy signers cooperate to produce valid proxy signatures and any less than t proxy signers can't cooperatively generate valid proxy signatures. Self-certified public key systems have attracted more and more attention because of its advantages. In 2005, Hsu and Wu designed a self-certified threshold proxy signature scheme with message recovery, nonrepudiation and traceability, which is based on Hsu et al.'s self-certified public key system. Park et al. showed that Hsu and Wu's self-certified threshold proxy signature scheme is insecure against the malicious original signer in 2006. That is, Hsu and Wu's scheme suffers from the cheat attack, where a malicious original signer can cheat CA into extracting a proxy signing key of a proxy signer. We analyzed Park et al's security analysis for Hsu and Wu's scheme and pointed out that the cheat attack proposed by Park et al. can't succeed. In one hand, in self-certified public system, users cannot freely change their private or public keys. If users want to change their private or public keys, CA has some corresponding strategy to limit users' behaviors. In the other hand, if some disagreement about the forged threshold proxy signature occurs, there are two solutions to deal with it. One solution depends on the help of CA and the other solution relies on the help of the delegated proxy signer.

Chin-Yu Sun,Hsiao-Ling Wu,Hung-Min Sun,Tingting Hwang

DOI: https://doi.org/10.6688/jise.202111_37(6).0015

2021-01-01

Journal of information science and engineering

Abstract:"Self-certified digital signature with message recovery" allows a specific receiver to restore the meaningful message from a digital signature and simultaneously confirms the validity of a signature and a signer's public key. This method greatly improves message confidentiality, solves the certificate management problem, and reduces the communication costs. Due to those benefits, this signature scheme has been widely adopted for e commerce applications. However, in recent years, this method has attracted attackers' attention; hence, a series of schemes were proposed to counter different attack scenarios. In this paper, we will first present a new attack scenario that can break the security of all the "self -certified digital signature with message recovery" schemes. Then, we will propose a scheme to solve the security issues. Compared with this type of signature scheme, our scheme can satisfy the essential security requirement of a digital signature without sacrificing the cost-effectiveness of the original design. The security and performance analyses demonstrate that our proposed scheme is secure, efficient, and well suited for practical use in e-commerce.

陈建华,叶胜男

DOI: https://doi.org/10.11896/jsjkx.201200117

2021-01-01

Computer Science

Abstract:Certificateless public key cryptosystem combines the advantages of identity-based cryptosystem and traditional PKI public key cryptosystem,overcomes the key escrow problem of identity-based public key cryptosystem and the certificate management problem of PKI system,and has obvious advantages.By analysing the security of a strongly secure certificateless signature scheme proposed by Hassouna,et al,it shows that the scheme cannot resist the attack of falsifying messages and do not use private key generated by system master key to sign.So it is not a certificateless signature scheme.On this basis,an improved certificateless signature scheme is proposed and it proves the scheme can resist the attack of the first class of strong adversaries and the second class of adversaries.In the random oracle model and under the assumption of the Diffie-Hellman problem of the elliptic curve,the improved scheme satisfies the existential forgery.

Song Feng Lu,Haider Ali,Omer Farooq

DOI: https://doi.org/10.12783/dtcse/icitia2017/13252

2017-01-01

Abstract:The current web security algorithms faced some drawbacks which making them under breakdown situations, these algorithms are such as SHA-1 and MD5 which they are already hacked. This work proposes a new digital signature scheme for building a web security system that can avoid using these algorithms, so we use SHA-2 algorithm instead of them since this algorithm can be considered as not hacking algorithm at least for next years. This algorithm is currently used for database security of a client-server system, while our work exploits this algorithm for another purpose regarding to authentication process to secure users login and create new users processes. Our technology approach is proposed to use digital signature architecture based on the MRC6 algorithm to encrypt data and SHA-2 algorithm to create a digital signature by Elliptic Curve Digital Signature Algorithm (ECDSA). So, data are encrypting by the MRC6 algorithm, then extracting hash values from these data for using its inside ECDSA algorithm to generate a digital signature, after that, we merge these encrypted data with a digital signature to send them together to web server. Implemented results show that our proposed architecture can achieve the conceptual goals for web security including; confidentiality, integrity and non-repudiation, and authentication. Finally our proposed architecture is implemented using C# and SQL server.

Qingshui Xue,Zhenfu Cao

DOI: https://doi.org/10.1007/978-3-540-30566-8_83

2004-01-01

Abstract:So far, all of proposed threshold proxy signature schemes are based on public key systems with certificates and most of them use Shamir's threshold secret share scheme. Self-certified public key system has attracted more and more attention because of its advantages. Based on Hsu et al's self-certified public key system and Li et al's proxy signature scheme, one threshold proxy signature scheme is proposed. The new scheme can provide the properties of proxy protection, verifiability, strong identifiability, strong unforgeability, strong repudiability, distinguishability, known signers and prevention of misuse. In the proxy signature verification phase, the authentication of original and proxy signers' public keys and the verification of the threshold proxy signature are executed together. In addition, the computation overhead and communication cost of the scheme are less than previous works with Shamir's secret share protocol and the public key system based on certificates.

Leila Zahhafi,Omar Khadir

DOI: https://doi.org/10.48550/arXiv.2101.09494

2021-01-23

Cryptography and Security

Abstract:In this paper we propose a new digital signature protocol inspired by the DSA algorithm. The security and the complexity are analyzed. Our method constitutes an alternative if the classical scheme DSA is broken.

CHEN Shao-Wei,CHEN Rui,LING Li

2010-01-01

Abstract:Although RFID technology has been increasingly popular and commonly used,there are still a host of defects in security and privacy.This paper proposes a new improved authentication protocol based on the existing protocols and Hash algorithm,and to some extent,it solves the security and privacy problems. This protocal can prevent replay attack,statistical analysis,spoofing attack,privacy track,and is suitable for the distributed system.

Andrew C. Yao,Yunlei Zhao

2012-01-01

Abstract:Digital signature is one of the basic primitives in cryptography. A common paradigm of obtaining signatures, known as the Fiat-Shamir (FS) paradigm, is to collapse any Σ-protocol (which is 3-round public-coin honest-verifier zero-knowledge) into a non-interactive scheme with hash functions that are modeled to be random oracles (RO). The Digital Signature Standard (DSS) and Schnorr’s signature schemes are two salient examples following the FS-paradigm. In this work, we present a modified Fiat-Shamir paradigm, named challenge-divided Fiat-Shamir paradigm, which is applicable to a variant of Σ-protocol with divided random challenges. This new paradigm yields a new family of (online/offline efficient) digital signatures from challenge-divided Σ-protocols, including in particular a variant of Schnorr’s signature scheme called challenge-divided Schnorr signature. We then present a formal analysis of the challenge-divided Schnorr signature in the random oracle model. Finally, we give comparisons between the challenge-divided Schnorr signature and DSS and Schnorr’s signature, showing that the newly developed challenge-divided Schnorr signature can enjoy better (online/offline) efficiency (besides provable security in the random oracle model). Of independent interest is a new forking lemma, referred to as divided forking lemma, for dealing with multiple ordered rewinding points in the RO model, which is of independent interest and can be applied to analyzing other cryptographic schemes in the RO model.

Bing-Hong Li,Yuan-Mei Xie,Xiao-Yu Cao,Chen-Long Li,Yao Fu,Hua-Lei Yin,Zeng-Bing Chen

DOI: https://doi.org/10.1103/PhysRevApplied.20.044011

2023-10-05

Abstract:Quantum digital signatures (QDS), generating correlated bit strings among three remote parties for signatures through quantum law, can guarantee non-repudiation, authenticity, and integrity of messages. Recently, one-time universal hashing QDS framework, exploiting the quantum asymmetric encryption and universal hash functions, has been proposed to significantly improve the signature rate and ensure unconditional security by directly signing the hash value of long messages. However, similar to quantum key distribution, this framework utilizes keys with perfect secrecy by performing privacy amplification that introduces cumbersome matrix operations, thereby consuming large computational resources, causing delays and increasing failure probability. Here, we prove that, different from private communication, imperfect quantum keys with limited information leakage can be used for digital signatures and authentication without compromising the security while having eight orders of magnitude improvement on signature rate for signing a megabit message compared with conventional single-bit schemes. This study significantly reduces the delay for data postprocessing and is compatible with any quantum key generation protocols. In our simulation, taking two-photon twin-field key generation protocol as an example, QDS can be practically implemented over a fiber distance of 650 km between the signer and receiver. For the first time, this study offers a cryptographic application of quantum keys with imperfect secrecy and paves a way for the practical and agile implementation of digital signatures in a future quantum network.

Quantum Physics,Cryptography and Security

Subhabrata Mukherjee,Bimal Roy,Anirban Laha

DOI: https://doi.org/10.48550/arXiv.1204.2798

2012-09-18

Abstract:Recent cryptanalytic attacks have exposed the vulnerabilities of some widely used cryptographic hash functions like MD5 and SHA-1. Attacks in the line of differential attacks have been used to expose the weaknesses of several other hash functions like RIPEMD, HAVAL. In this paper we propose a new efficient hash algorithm that provides a near random hash output and overcomes some of the earlier weaknesses. Extensive simulations and comparisons with some existing hash functions have been done to prove the effectiveness of the BSA, which is an acronym for the name of the 3 authors.

Cryptography and Security