熊虎

2009-01-01

Abstract:Identity-based（ID-based）ring signature has drawn great concerns in recent years and many ID-based ring signature schemes have been proposed until now.Unfortunately,all of these ID-based ring sig-natures are constructed from bilinear pairings,a powerful but computationally expensive primitive.Hence,ID-based ring signature without pairing is of great interest in the field of cryptography.In this pa-per,the authors firstly propose an ID-based ring signature scheme based on quadratic residues.The pro-posed scheme is proved to be existentially unforgeable againsi adaptive chosen message-and-identity attackunder the random oracle model,assuming the hardness of factoring.The proposed scheme is more effi-cient than those which are constructed from bilinear pairings.

WU Huai,SUN Ying,XU Chun-xiang,WU Wei

DOI: https://doi.org/10.3969/j.issn.1001-0548.2013.06.022

2013-01-01

Abstract:The security of the identity-based ring signature scheme of [18] is analyzed in this paper. It is found that this scheme did not possess the unforgeability property. It is also shown that the proposed scheme is insecure against a new kind of forgery attack, i.e. the identity assembly forgery attack. With such an attack, an adversary is able to forge valid ring signatures on any message based on the features of its identity, and the identity of the adversary can be even not included in the ring of the forged signature.

Hu Xiong,Zhiguang Qin,Fagen Li,Jing Jin

DOI: https://doi.org/10.1109/ICCCAS.2008.4657818

2008-01-01

Abstract:Identity-based(ID-based) threshold ring signature has rapidly emerged in recent years and many schemes have been proposed until now. However, most of these ID-based threshold ring signatures are constructed from bilinear pairings, a powerful but computationally expensive primitive. Hence, ID-based threshold ring signature without pairing is of great interest in the field of cryptography. In this paper, we propose an ID-based threshold ring signature scheme without pairings. The proposed scheme is proven to be existential unforgeable against adaptive chosen message-and-identity attack under the random oracle model, assuming the hardness of factoring. ©2008 IEEE.

Xun Sun,Jianhua Li,Gongliang Chen,Shutang Yang

2008-01-01

Abstract:In a directed signature scheme, a verifier can exclusively verify the signatures designated to himself, and shares with the signer the ability to prove correctness of the signature to a third party when necessary. Directed signature schemes are suitable for applications such as bill of tax and bill of health. This paper studies directed signatures in the identity-based setting. We first present the syntax and security notion that includes unforgeability and invisibility, then propose a concrete identity-based directed signature scheme from bilinear pairings. We then prove our scheme existentially unforgeable under the computational Diffie-Hellman assumption, and invisible under the decisional Bilinear Diffie-Hellman assumption, both in the random oracle model.

Man Ho Au,Joseph K. Liu,Willy Susilo,Tsz Hon Yuen

DOI: https://doi.org/10.1016/j.tcs.2012.10.031

IF: 1.002

2013-01-01

Theoretical Computer Science

Abstract:In this paper, we propose a new ID-based event-oriented linkable ring signature scheme, with an option as revocable-iff-linked. With this option, if a user generates two linkable ring signatures in the same event, everyone can compute his identity from these two signatures. We are the first in the literature to propose such a secure construction in an ID-based setting. Even compared with other existing non ID-based schemes, we enjoy significant efficiency improvement, including constant signature size and linking complexity.Our scheme can be also regarded as a normal ID-based ring signature. We are also the first to propose such a scheme with constant signature size and enhanced privacy, namely the signer is anonymous even to the PKG who has the master secret key.We prove the security of our scheme in the random oracle model, using DL, DDL and q-SDH assumptions.

computer science, theory & methods

Zhang Changlun,Liu Yun,He Dequan

DOI: https://doi.org/10.1109/icosp.2006.346099

2006-01-01

Abstract:Ring signature is proved very useful in various applications for its perfect properties. However, the existing schemes based on the discrete logarithm are not perfect in signature and signer verification. In this paper, we introduce a new verifiable ring signature scheme based on Nyberg-Rueppel signature. The scheme realizes the ring signature using the hash functioning merely, which can verify the actual signer besides satisfying the basic properties of ring signature: unconditional anonymity and non-forgeability. The comparison shows that our signature scheme is of less size of signature and computation, and the signer verification is more simple and easy to understand

Yang ZHAO,Feng YUE,Hu XIONG,Zhi-guang QIN

DOI: https://doi.org/10.3969/j.issn.1671-1122.2015.10.002

2015-01-01

Abstract:The designated verifier signature specifies a verifier to check the validity of the signature; any third party can not check it because the designated verifier is able to generate an indistinguishable signature from the signer’s signature. In ring signature scheme, the signer can sign the message on behalf of the ring anonymously, the veriifer can check the validity of the signature, but it cannot recognize which member of the ring has signed it. In order to ensure the signer’s identity privacy and that only the designated veriifer can check the authenticity of the signature, Wu propose a strong designated veriifer ID-based ring signature scheme through combining the designated veriifer signature and the ring signature. The scheme allows the signer to designate a veriifer and generate a designated veriifer ring signature. Through the analysis on Wu’s scheme, we ifgure out the scheme does not satisfy the attribute of non-delegatability in designated verifier signature scheme and describe the attack method in this paper. For the sake of avoiding the lfaw, this paper improves Wu’s scheme and makes it provably secure. In addition, according to the improved scheme, we propose a strong designated veriifer ring signcryption scheme providing authentication and conifdentiality simultaneously.

sun hua,guo li,wang aimin

2011-01-01

Abstract:Signcryption is a cryptographic primitive which provides authentication and confidentiality simultaneously with a computational cost lower than signing and encryption respectively. The ring signcryption has anonymity in addition to authentication and confidentiality, which allows any user to choose any set of users that includes himself and signcrypt messages without revealing who in the set has actually produced it. This paper presents an efficient identity-based ring signcryption scheme in the standard model, which proves its indistinguishability against adaptive chosen ciphertext attacks and existential unforgeability against adaptive chosen message and identity attacks in terms of the hardness of CDH problem and DBDH problem.

Xin Lv,Feng Xu,Ping Ping,Xuan Liu,Huaizhi Su

DOI: https://doi.org/10.1109/DCABES.2015.48

2015-01-01

Abstract:Ring signatures enable a user to sign a message so that a ring of possible signers is identified, without revealing exactly which member of that ring actually generated the signature. In some situations, however, an actual signer may possibly want to expose himself, for instance, if doing so, he will acquire an enormous benefit. In this paper, a signature scheme with designated verifiability based on Schnorr ring signature is proposed. The scheme provides a confirmation procedure, in which the real signer is able to convince a designated party that he is the one who generates the signature. The confirming procedure involves an interactive Zero-Knowledge proof protocol, which is non-transferable, and it only can be triggered by the signer. Based on the intractability of Discrete Logarithm Problem (DLP), the scheme is existentially unforgeable under adaptive-chosen message attack in the random oracle model.

shengke zeng,qinyi li,zhiguang qin,qing lu

DOI: https://doi.org/10.1002/sec.859

IF: 1.968

2016-01-01

Security and Communication Networks

Abstract:Ring signature scheme protects the privacy while signer is signing. In the ring signature scheme, the signer can randomly choose verification keys of entities and generate a signature on behalf of these entities. The generated signature can be verified by anyone by inputting all these verification keys. Consequently, a ring signature convinces a verifier that one member from these entities produces this signature without revealing which one. This property is good for the signer as his identity is not leaked. However, the signer also can make use of this capacity to generate a malicious signature on behalf of a ring. Because of the unconditional anonymity of ring signature, this signer cannot be traced to be responsible for his malicious signing. Group signature can avoid this problem because the group manager in the group signature can trace the actual signer by using the trapdoor. However, the group is fixed from the beginning and it needs a complicated setup algorithm. Deniable ring signature was introduced by Komano et al., which allows to revoke the anonymity of actual signer without the manager's help if necessary. The actual signer can confirm his signing for anyone through the confirmation protocol. On the other hand, non-signers in the ring can disavow this signing by the disavowal protocol. Therefore, the actual signer can be traced. However, Komano's scheme was proven in random oracles, and the traceability protocols (confirmation and disavowal protocols) are interactive. To improve Komano's construction, this work proposes a new efficient non-interactive deniable ring signature scheme in the standard model. It is a kind of ring signature and therefore, it does not require a setup algorithm, and the ring in the scheme is flexible. Copyright (c) 2013 John Wiley & Sons, Ltd.

Hu Xiong,Zhiguang Qin,Fagen Li

DOI: https://doi.org/10.4103/0377-2063.118032

IF: 1.8768

2013-01-01

IETE Journal of Research

Abstract:Ring signature is a primitive that allows an entity to sign a message on behalf of a group of potential signers (called a ring) while preserving unconditional anonymity in the ring. Ring signature has found many applications in fair exchange, electronic transaction protocols, and ad hoc networks. In this paper, a survey of ring signature from a number of perspectives is presented to provide researchers with a better understanding of this primitive. We survey the state of the art of ring signature schemes along with the security model, and compare their security properties and efficiency. Furthermore, the extensions of ring signature schemes with special properties are also investigated.

Gongming Zhao,Miaomiao Tian

DOI: https://doi.org/10.1007/978-3-030-01446-9_16

2018-01-01

Abstract:Ring signature is an attractive cryptographic primitive that has been widely used in many fields because of its anonymity. Traditional ring signatures rely on the public key infrastructure and require lots of digital certificates. To eliminate the digital certificates, Zhang and Kim (Asiacrypt’02) introduced the concept of identity-based ring signatures. So far, however there is few identity-based ring signatures built on lattice-related assumptions and they are not efficient enough for applications. In this paper we present a new identity-based ring signature scheme from lattices. Compared with the existing counterparts, our scheme has the advantages of higher computational efficiency and lower storage overhead. We prove the security of our construction in the random oracle model under the short integer solution assumption.

Bai Liu,Pengda Zhu,Kuikui Guo

DOI: https://doi.org/10.1063/5.0212258

IF: 1.697

2024-06-01

AIP Advances

Abstract:In recent years, identity-based quantum signature protocols have received much attention due to their unique advantages. Based on Bell states, we propose an efficient identity-based quantum signature scheme. In our scheme, the signer’s private key is generated from their identity information. The signer uses the private key and secret parameters to generate a signature for the verifier. The verifier, who possesses the identity information of the signer, can authenticate the signature. Our proposed scheme ensures signature non-forgeability and non-repudiation. In addition, the protocol does not require the preparation of long-term quantum memory or the performance of quantum swap tests, making it more efficient than previous schemes.

materials science, multidisciplinary,physics, applied,nanoscience & nanotechnology

FY Miao,Y Xiong,SB Yang,XF Wang

IF: 1.019

2006-01-01

Chinese Journal of Electronics

Abstract:Ring signature is a new kind of signer-ambiguous signature, in which the real signer randomly designates a set of possible signers including itself, and generates totally by itself the ring signature only with its private key and public keys of other possible signers. The signature includes no definite information that identifies the real signer. The paper extends the general notion of ring signature and proposes a provable encrypted ring signature scheme. In the scheme, the real signer produces a signer-ambiguous signature with self-provable evidence and can uniquely prove through the evidence that it is the authentic signer if necessary. Furthermore, by an identity-based encryption algorithm from bilinear pairings the ring signature is encrypted to guarantee that only the right verifier can verify the signature. A variant of the scheme is also given in the paper. Analysis shows that the provable encrypted ring signature is confidential, self-provable, signer-ambiguous and secure. The proposed scheme can be applied in many applications such as e-voting, e-commerce etc.

Zhen Qin,Chen Yuan,Yilei Wang,Hu Xiong

DOI: https://doi.org/10.1016/j.ipl.2016.02.003

IF: 0.851

2016-01-01

Information Processing Letters

Abstract:ID-based signature enables users to verify signatures using only public identifier. Very recently, Rossi and Schmid (2015) [9] proposed two identity-based signature schemes along with the application to group communications. Unfortunately, by proposing concrete attack, we demonstrate that the former scheme is insecure against forgery attack, while the latter scheme has been totally broken in the sense that the signing key can be recovered from the valid signature easily.

Weizhe ZHANG,Dezhi GAO,Yan LI

DOI: https://doi.org/10.3778/j.issn.1002-8331.1704-0302

2017-01-01

Abstract:There are many types of ring signature schemes, but most of them are based on bilinear pairing, and have some problems in security and computing speed. Compared with Elliptic Curve Cryptography(ECC), the advantage of bilinear pairing is not obvious, and it can not provide higher level of security, takes less storage space. In order to improve the se-curity of the scheme and protect the anonymity of the signer's ID, adding the signer's ID which is processed in ring signa-ture scheme, a new hidden identity ring signature scheme using elliptic curve cryptography is proposed. Finally, the cor-rectness and security will also be provided by the security analysis.

Yong Yu,Fagen Li,Chunxiang Xu,Ying Sun

DOI: https://doi.org/10.1007/s11859-008-0607-1

2008-01-01

Abstract:Signcryption is a cryptographic primitive that performs encryption and signature in a single logical step more efficiently than sign-then-encrypt approach. Till now, various kinds of signcryption schemes have been proposed. Among them, the requirement of signcrypter’s privacy protection is needful in some practical applications. In this paper, a new identity-based anonymous signcryption scheme from bilinear pairings, which is the organic combination of identity-based ring signature and encryption scheme, is proposed. The proposed scheme is indistinguishable against the chosen ciphertext attack under the Decisional Bilinear Diffie-Hellman assumption in the random oracle model. Its unforgeability relies on the computational Diffie-Hellman problem. Compared with the previous schemes, the new scheme is more efficient in computation.

Guomin Yang,Duncan S. Wong,Xiaotie Deng,Huaxiong Wang

DOI: https://doi.org/10.1007/11745853_23

2006-01-01

Abstract:Digital signature is one of the most important primitives in public key cryptography. It provides authenticity, integrity and non- repudiation to many kinds of applications. On signer privacy however, it is generally unclear or suspicious of whether a signature scheme itself can guarantee the anonymity of the signer. In this paper, we give some armative answers to it. We formally define the signer anonymity for digital signature and propose some schemes of this type. We show that a signer anonymous signature scheme can be very useful by proposing a new anonymous key exchange protocol which allows a client Alice to establish a session key with a server Bob securely while keeping her iden- tity secret from eavesdroppers. In the protocol, the anonymity of Alice is already maintained when Alice sends her signature to Bob in clear, and no additional encapsulation or mechanism is needed for the signa- ture. We also propose a method of using anonymous signature to solve the collusion problem between organizers and reviewers of an anonymous paper review system.

Jun-fang Xiao,Gui-hua Zeng

DOI: https://doi.org/10.1007/s12204-009-0189-x

2009-01-01

Journal of Shanghai Jiaotong University (Science)

Abstract:Security of wireless sensor network (WSN) is a considerable challenge, because of limitation in energy, communication bandwidth and storage. ID-based cryptosystem without checking and storing certificate is a suitable way used in WSN. But key escrow is an inherent disadvantage for traditional ID-based cryptosystem, i.e., the dishonest key generation center (KGC) can forge the signature of any node and on the other hand the node can deny the signature actually signed by him/herself. To solving this problem, we propose an ID-based ring signature scheme without trusted KGC. We also present the accurate secure proof to prove that our scheme is secure against existential forgery on adaptively chosen message and ID attacks assuming the complexity of computational Diffie-Hellman (CDH) problem. Compared with other ring signature schemes, we think proposed scheme is more efficient.

Shifeng Sun,Qiaoyan Wen,Zhengping Jin,Hua Zhang

DOI: https://doi.org/10.1109/isise.2010.47

2010-01-01

Abstract:Recently, several ID-based strong designated verifier signature schemes have been proposed in the literature. However, most of them can not satisfy the strong ness property that any third party without the designated verifier's private key is unable to check the validity of a designated verifier signature, and they are not given the rigorous security proofs. To solve those problems above, we put forward a new efficient ID-based strong designated verifier signature scheme in this paper which is strong, and rigorously proved secure in the random oracle model based on the Bilinear Diffie-Hellmanassumptions.