孙超亮,曹珍富,梁晓辉

DOI: https://doi.org/10.3969/j.issn.1000-3428.2009.04.045

2009-01-01

Abstract:The paper proposes a new threshold proxy re-signature scheme.In the standard proxy re-signature scheme,a semi-trusted proxy can transform Alice’s signature into Bob’s signature on the same message,but in this scheme there are n semi-trusted proxies between the two signers and the re-signature generation can be performed if and only if there are at least t proxies.This scheme holds the features of proxy re-signature and threshold signature,so it is especially suitable for some complicated checking and voting system.

Li-Hong Guo,Hai-Tao Wu,Qing Yang

DOI: https://doi.org/10.2991/icwcsn-16.2017.32

2016-01-01

Abstract:Proxy signature schemes have been suggested for use in a number of applications, so the security of proxy signature scheme is more and more important. However, at present, almost all the proxy signature schemas were proven secure in the random oracle model, which has received a lot of criticism. Recently, Yu et al. proposed a designated verifier proxy signature scheme without random oracles by using Waters hashing technique. The formal models and a strictly logical process were provided in this schema. But Kang et al. show some attacks on Yu et al.s scheme and offer its insecurity proof. In this paper, in order to overcome the weaknesses in Yu et al.s scheme we make supplements on it and make it secure resist Kang et al.s attacks.

Jun-li MI,Jian-zhong ZHANG

DOI: https://doi.org/10.3969/j.issn.1000-3428.2009.21.057

2009-01-01

Abstract:This paper presents a threshold-signature with proxy signers, in which some signers can delegate their proxies to do the signatures. The scheme can recall the proxy signature right of the proxy signer delegated by the original signer if the original signer needs. Signature generation needs an interactive protocol among t participants without the trusted dealer. This scheme is secure and efficient, and it has smaller key and is easy to realize. Security analysis proves it is secure and effective.

李发根,王超,熊虎

DOI: https://doi.org/10.3969/j.issn.1671-1122.2009.03.007

2009-01-01

Abstract:In a(t,n) threshold proxy signature scheme,which is a variant of the proxy signature scheme,the proxy signature key is shared among a group of n proxy signers delegated by the original signer.Any t or more proxy signers can cooperatively sign messages on behalf of the original signer.Recently,Qian et al.proposed a new threshold proxy signature scheme from bilinear pairings.Unfortunately,we show that Qian et al.'s scheme is vulnerable to the forgery attack.That is,an adversary can forge a valid threshold proxy signature on any messages.In addition,Qian et al.'s scheme suffers from the weakness that the proxy signers might change the threshold value.That is,the proxy signers in the designated proxy group can arbitrarily modify the threshold strategy without being detected by the original signer or veri?ers,which might violate the original signer's intent.In this paper,we propose a new threshold proxy signature scheme that overcomes the above weaknesses.

Qingshui Xue,Zhenfu Cao

DOI: https://doi.org/10.1007/978-3-540-30566-8_83

2004-01-01

Abstract:So far, all of proposed threshold proxy signature schemes are based on public key systems with certificates and most of them use Shamir's threshold secret share scheme. Self-certified public key system has attracted more and more attention because of its advantages. Based on Hsu et al's self-certified public key system and Li et al's proxy signature scheme, one threshold proxy signature scheme is proposed. The new scheme can provide the properties of proxy protection, verifiability, strong identifiability, strong unforgeability, strong repudiability, distinguishability, known signers and prevention of misuse. In the proxy signature verification phase, the authentication of original and proxy signers' public keys and the verification of the threshold proxy signature are executed together. In addition, the computation overhead and communication cost of the scheme are less than previous works with Shamir's secret share protocol and the public key system based on certificates.

Chaosheng Feng,Zhiguang Qin,Ding Yuan

DOI: https://doi.org/10.1109/ICMLC.2007.4370693

2007-01-01

Abstract:In 2003, Hsu et al. presented an improved proxy signature scheme based on Sun et al.'s scheme to effectively defeat its drawback that the threshold value can be changed by proxy signers. However, security analysis on the improved scheme shows that both the improved scheme and the original one can't stand the insider conspiracy attack and the forge attack. Moreover, the signature based on them is not identifiable or nonrepudiable. Aiming at these weaknesses, an improved scheme is proposed in this paper. Security analysis on the new improved scheme shows that it effectively overcomes those disadvantages of Hsu et al.' s scheme.

Li Fagen,Hu Yupu,Chen Jie

DOI: https://doi.org/10.1007/bf02831843

2006-01-01

Abstract:In 2006, Bao et al proposed an identity-based threshold proxy signature scheme with known signers. In this paper, we show that Bao et al 's scheme is vulnerable to the forgery attack. An adversary can forge a valid threshold proxy signature for any message with knowing a previously valid threshold proxy signature. In addition, their scheme also suffers from the weakness that the proxy signers might change the threshold value. That is, the proxy signers can arbitrarily modify the threshold strategy without being detected by the original signer or verifiers, which might violate the original signer's intent. Furthermore, we propose an improved scheme that remedies the weaknesses of Bao et al 's scheme. The improved scheme satisfies all secure requirements for threshold proxy signature.

HM Sun,NY Lee,T Hwang

DOI: https://doi.org/10.1049/ip-cdt:19990647

1999-01-01

IEE Proceedings - Computers and Digital Techniques

Abstract:A (t, n) threshold proxy signature scheme allows t or more proxy signers from a designated group of n proxy signers to sign messages on behalf of an original signer. The authors review both Zhang's threshold proxy signature scheme and Kim's threshold proxy signature scheme. They show that Zhang's scheme suffers from some weaknesses and Kim's scheme suffers from a disadvantage. Based on Zhang's scheme, they propose a new threshold proxy signature scheme to defeat the weaknesses of Zhang's scheme and the disadvantage of Kim's scheme.

HM Sun

DOI: https://doi.org/10.1016/s0140-3664(99)00029-8

IF: 5.047

1999-01-01

Computer Communications

Abstract:A (t,n) threshold proxy signature scheme allows t or more proxy signers from a designated group of n proxy signers to sign messages on behalf of an original signer. A threshold proxy signature scheme with the nonrepudiation property is a scheme with the capability that any verifier can identify the proxy group which is responsible for a proxy signature, while the proxy group cannot deny. So far, there have been two threshold proxy signature schemes proposed. Of these, Kim’s scheme is nonrepudiable, but Zhang’s scheme is not. In these two schemes, the t proxy signers from the group who actually sign the message are unknown and unidentified. This is very inconvenient for auditing purposes. For the responsibility of the actual signers and the traceability of adversarial signers, it is sometimes necessary to identify who the actual signers are. In this article, we propose the nonrepudiable threshold proxy signature scheme with known signers which is a nonrepudiable threshold proxy signature scheme with the property that the actual signers from the proxy group are known and identified.

Jianzhong Zhang

2012-01-01

Computer Engineering and Applications Journal

Abstract:Threshold proxy signature is a signature scheme which puts proxy signature and threshold signa-ture together.It has advantages of division of proxy powers and distributing the proxy key.Certificateless pub-lic key cryptography effectively solves the inherent key escrow problem in identity-based public key cryptog-raphy while keeps its certificate free property.This paper proposes a new certificateless threshold proxy signa-ture scheme putting the certificatless signature scheme and threshold proxy together.It is safe and efficient.

Jun Shao,Zhenfu Cao,Rongxing Lu

DOI: https://doi.org/10.1016/j.jss.2006.02.047

IF: 3.5

2007-01-01

Journal of Systems and Software

Abstract:Since the first (t, n) threshold proxy signature scheme was proposed, the threshold proxy signature has enjoyed a considerable amount of interest from the cryptographic research community. In 2001, Hsu et al. proposed a non-repudiable threshold proxy signature scheme with known signer, but the efficiency is rather low and a system authority (SA) is also required in this scheme. Recently, to overcome these shortcomings, Yang et al. proposed an improvement of Hsu et al.’s scheme that is very efficient and without employing a SA. However, in this paper, we shows that Yang et al.’s scheme is not secure against the warrant attack. That is, the adversary can replace the warrant of the proxy signature. To resist this attack, based on Yang et al.’s scheme, we propose a new and more efficient scheme without a secure channel.

HF Qian,ZF Cao,QS Xue

DOI: https://doi.org/10.15388/informatica.2005.097

2005-01-01

Informatica

Abstract:Since threshold proxy signature has been proposed, all threshold proxy signature schemes are based on the discrete logarithm problems in the modular multiplicative group which has an element g with a large prime order. Nowadays this kind of threshold proxy signature schemes become more and more complex and time-consuming for security and specific requirement. In this paper, we propose a (bilinear) pairing-based threshold proxy signature scheme with known signers, analyze its security and check the following properties the proposed scheme has: non-repudiation, unforgeability, identifiability, distinguishability, verifiability, prevention of misuse of proxy signing right, etc. Moreover, we point out that the proposed scheme is of great efficiency by comparing it with Sun's and Hsu et al.'s scheme.

QS Xue,ZF Cao,FL Tang

2004-01-01

Abstract:The proxy signature scheme, a variation of ordinary digital signature schemes, enables a proxy signer to sign messages on behalf of the original signer. In a (t, n) threshold proxy signature scheme, the original signer authorizes a proxy group with n proxy members. Only the cooperation of I or more proxy members is allowed to generate the proxy signature. Former threshold proxy signature schemes are all based on the difficulty of discrete logarithm. In 2003, for the first time, Hwang et al proposed a practical (t,n) threshold proxy signature scheme based on the difficulty of factoring the RSA modulus. By our observation, their scheme can't provide the properties of proxy protection, strong unforgeability, strong nonrepudiation, strong identifiability and known signers. To overcome their drawbacks, based on their scheme, we propose an improved version. The improved scheme provides the properties of not only proxy protection, strong unforgeability, strong identiflability and strong nonrepudiation, but also known signers.

Chao Wang,Yunpeng Han,Fagen Li

DOI: https://doi.org/10.1109/EBISS.2009.5138069

2009-01-01

Abstract:In a (t, n) threshold proxy signature scheme, which is a variant of the proxy signature scheme, the proxy signature key is shared among a group of n proxy signers delegated by the original signer. Any t or more proxy signers can cooperatively sign messages on behalf of the original signer. Recently, Qian et. al. proposed a pairing-based threshold proxy signature scheme. However, we show that their scheme suffers from the forgery attack. That is, an adversary can forge a valid threshold proxy signature on any messages. In addition, their scheme also suffers from the weakness that the proxy signers might change the threshold value. That is, the proxy signers can arbitrarily modify the threshold strategy without being detected by the original signer or message verifiers, which might violate the original signer's intent. In this paper, we propose an improved scheme that overcomes the above weaknesses.

LV Xin,WANG Zhi-jian,XU Feng

DOI: https://doi.org/10.3778/j.issn.1002-8331.2010.19.024

2010-01-01

Abstract:Aiming to problems about security and performance exist in many proposed threshold proxy schemes.The bilinear pairings are introduced to signature scheme.A chameleon threshold proxy signature scheme based on bilinear pairings is presented combined with chamelen signature,which can resolve the security problems existing in many proposed scheme,furthermore,satisfy all security attributes with which the strongly-secure threshold proxy signature scheme should be provided,it can resist many different kinds of possible attacks.

Qs Xue,Zf Cao,Hf Qian

2004-01-01

Abstract:So far, all threshold proxy signature schemes are based on discrete logarithm problems in the modular multiplicative group of a large prime. The kind of threshold proxy signature scheme becomes more and more complex and cost more and more computation. In the paper, we propose a bilinear pairings-based threshold proxy signature scheme with known signers and its security is analyzed and discussed. The scheme can provide the properties of nonrepudiation, unforgeability, identifiability, distinguishability, verifiability, prevention of misuse of proxy signing right, etc. Furthermore, we show that the proposed scheme is more efficient than Sun's and Hsu et al's scheme in terms of computational complexities and communication costs in some cases.

WANG Yong-bing,LU Zheng-guo,ZHANG Jian-zhong

DOI: https://doi.org/10.3778/j.issn.1002-8331.2008.05.042

2008-01-01

Computer Engineering and Applications Journal

Abstract:The concepts of shared verification and signcryption are introduced into threshold proxy signature,and a secure and efficient threshold proxy signcryption scheme with shared verification is presented.In the scheme,any t or more proxy signers can sign a message on behalf of an original signer,and only t or more verifiers of the specified group together can recover the message and verify the validity of proxy signcryption.Furthermore,the scheme also has the merits of secrecy,public verifiability and pubic delegation.

YUAN Ding,FAN Pingzhi

DOI: https://doi.org/10.3969/j.issn.0258-2724.2007.01.002

2007-01-01

Journal of Southwest Jiaotong University

Abstract:An improved threshold proxy signature scheme was proposed to overcome the defects of the existing scheme that it can not resist conspiracy attacks and forgery attacks from the signers,and is not practical in some applications.In the signing process,every actual signer is required to put in his private key,which makes the signature contain secret information of both proxy signers and actual singers and resist conspiracy attacks and forgery attacks from the signers.An elliptic curve cryptography was used to replace ElGamal discrete logarithm cryptography in the original scheme,which makes the new scheme efficient.

DunTao Guo,Ping Wei,Dan Yu,Xiaoyuan Yang

DOI: https://doi.org/10.1109/ICCSIT.2010.5563635

2010-01-01

Abstract:Proxy re-signature is greatly concerned by researchers recently. It is a very useful tool for sharing web certificates, forming weak group signatures, and authenticating a network path. In this paper, we propose the first certificateless proxy re-signature scheme. Based on certificateless public cryptosystem, the scheme solves the using of certificate in certificate-based scheme and removes key escrow in ID-based scheme. Analysis shows that the proposed scheme can satisfy the required properties of proxy re-signature, and it can avoid public key replacement attack and malicious KGC attack. © 2010 IEEE.

LIU Wen-qi,YANG Jian-hua,ZHANG Peng,OU Zong-ying

DOI: https://doi.org/10.3321/j.issn:1000-8608.2005.06.024

2005-01-01

Abstract:In a(t,n) threshold proxy signature scheme,any t or more proxy signers from the delegated proxy group are allowed to delegate the original signer to generate a valid proxy signature.It is more feasible in the situation of practical application because some situations of group-oriented application are considered.By far,most threshold proxy signature schemes proposed are based on the discrete logarithm problem.Since elliptic curve cryptosystem has the advantages of shorter key and more rapid speed at the same security level,a threshold proxy signature scheme based on elliptic curves is presented.Its security is based on the elliptic curve discrete logarithm problem.And the actual signers can be identified if it is necessary.Through security analysis the proposed scheme is proved to be capable of withstanding conspiracy attack and forgery attack.Because of the property of the elliptic curve cryptography,this scheme is efficient in terms of computational complexity and communication cost.