Li-Hong Guo,Hai-Tao Wu,Qing Yang

DOI: https://doi.org/10.2991/icwcsn-16.2017.32

2016-01-01

Abstract:Proxy signature schemes have been suggested for use in a number of applications, so the security of proxy signature scheme is more and more important. However, at present, almost all the proxy signature schemas were proven secure in the random oracle model, which has received a lot of criticism. Recently, Yu et al. proposed a designated verifier proxy signature scheme without random oracles by using Waters hashing technique. The formal models and a strictly logical process were provided in this schema. But Kang et al. show some attacks on Yu et al.s scheme and offer its insecurity proof. In this paper, in order to overcome the weaknesses in Yu et al.s scheme we make supplements on it and make it secure resist Kang et al.s attacks.

Xun Sun,Jianhua Li,Hu Yin,Gongliang Chen

DOI: https://doi.org/10.15388/informatica.2010.276

2010-01-01

Informatica

Abstract:In 2007, Kancharla et al. proposed an identity-based strong designated verifier signature (IBSDVS) scheme based on bilinear pairings, and claimed it unforgeable and non-delegatable. However, in this paper, we show that this scheme is actually delegatable.

Yang Chen,Yang Zhao,Hu Xiong,Feng Yue

DOI: https://doi.org/10.6633/ijns.201707.19(4).10

2017-01-01

Abstract:The designated verifier signature only enables the designated verifier to check the correctness of the signature, while any third party can not verify whether this signature is valid or not. Most of the previous designated verifier signature schemes depend on certificate-based cryptography or identity-based cryptography, while little attention has been paid to the certificateless designated verifier signature scheme which has much more advantages than the previous constructions. In this paper, we propose the first certificateless strong designated verifier signature scheme with non-delegatability. We show that our scheme satisfies the basic properties of a designated verifier signature scheme and resists the two types of adversaries in certificateless cryptography. In addition, the comparison with other existing certificateless SDVS schemes demonstrates the proposed scheme is provided with a good level of security and performance.

Shifeng Sun,Qiaoyan Wen,Zhengping Jin,Hua Zhang

DOI: https://doi.org/10.1109/isise.2010.47

2010-01-01

Abstract:Recently, several ID-based strong designated verifier signature schemes have been proposed in the literature. However, most of them can not satisfy the strong ness property that any third party without the designated verifier's private key is unable to check the validity of a designated verifier signature, and they are not given the rigorous security proofs. To solve those problems above, we put forward a new efficient ID-based strong designated verifier signature scheme in this paper which is strong, and rigorously proved secure in the random oracle model based on the Bilinear Diffie-Hellmanassumptions.

Qingxuan Wang,Chi Cheng,Rui Xu,Jintai Ding,Zhe Liu

DOI: https://doi.org/10.1109/TSC.2020.3041324

IF: 11.019

2022-01-01

IEEE Transactions on Services Computing

Abstract:Recently, Zhang et al. proposed a lattice-based data outsourcing scheme with public integrity verification (DOPIV), which enables an original data owner to delegate a proxy to generate the signatures of data and outsource them to the cloud server. They employed a third party auditor (TPA) to check the integrity of the outsourced data and any TPA can verify the data integrity efficiently. DOPIV is claimed to achieve proxy-oriented secure data outsourcing as well as storage correctness guarantee. Unfortunately, we find that there exist vulnerabilities in DOPIV which allow the cloud server to simply delete the received data without being noticed by the TPA. Fortunately, we come up with a simple and efficient solution to thwart the proposed attack. Our improved scheme maintains all the features claimed in DOPIV.

Solomon Guadie Worku,Chunxiang Xu,Jining Zhao

DOI: https://doi.org/10.1007/s11704-013-3138-7

IF: 2.6688

2014-01-01

Frontiers of Computer Science

Abstract:An auditing scheme is a good way to prove owner’s data outsourced to the cloud are kept intact, and a scheme capable of giving public verifiability service is a good option that some researchers have managed to build for the last few years. However, in a public auditing scheme everybody does verification of data and a possibility of leaking some secrete information to the public verifiers is an issue that data owners are unhappywith this scenario. For example, the data owner does not want anybody else to know he has the data stored in the cloud server. Motivated by the issue of privacy associated with public auditing system, we proposed a designated verifier auditing (DVA) scheme based on Steinfeld et al.’s universal designated verifier (DV) signature scheme. Our DVA scheme authorizes a third party auditor with private verification capability. It provides private verification because the scheme involves private key of the verifier. Moreover, we present the batch auditing scheme to improve auditing efficiency. Through rigorous security analysis we showed that our scheme is provably secure in the random oraclemodel assuming that the computational Diffie-Hellman (CDH) problem is hard over the group of bilinear maps.

Yong Yu,Chunxiang Xu,Xiaosong Zhang,Yongjian Liao

DOI: https://doi.org/10.1016/j.camwa.2009.01.032

IF: 3.218

2009-01-01

Computers & Mathematics with Applications

Abstract:In a designated verifier proxy signature scheme, one can delegate his or her signing capability to another user in such a way that the latter can sign messages on behalf of the former, but the validity of the resulting signatures can only be verified by the designated verifier. Several designated verifier proxy signature schemes have been proposed so far. However, most of the schemes were proven secure in the random oracle model, which has received a lot of criticism since the security proofs in the random oracle model are not sound with respect to the standard model. In this paper, we propose a new construction of designated verifier proxy signature whose security can be proven without using the random oracle model. Our scheme is inspired by Waters’ Identity-based encryption. The unforgeability of our scheme is based on the hardness of Gap Bilinear Diffie–Hellman problem. As far as we know, this is the first designated verifier proxy signature secure in the standard model.

Min Dong,Yanli Ren,Xinpeng Zhang

DOI: https://doi.org/10.3837/tiis.2017.07.019

2017-01-01

KSII Transactions on Internet and Information Systems

Abstract:With the development of cloud computing and widespread availability of mobile devices, outsourcing computation has gotten more and more attention in cloud computing services. The computation of bilinear pairing is the most expensive operation in pair-based cryptographic schemes. Currently, most of the algorithms for outsourcing bilinear pairing have small checkability or the outsourcers need to operate expensive computations. In this paper, we propose an efficient algorithm for outsourcing bilinear pairing with two servers, where the outsourcers can detect the errors with a probability of 1 if the cloud servers are dishonest, and the outsourcers are not involved in any complex computations. Finally, the performance evaluation demonstrates that the proposed algorithm is most efficient in all of fully verifiable outsourcing algorithms for bilinear pairing.

Genqing Bian,Rui Zhang,Bilin Shao

DOI: https://doi.org/10.1109/access.2022.3166920

IF: 3.9

2022-01-01

IEEE Access

Abstract:The remote data possession checking mechanism can effectively verify the integrity of outsourced data, which can usually be divided into public verification and private verification. The verifier of public verification can be any cloud user, while private verification can only be the data owner. However, in most practical situations, the data owner expects that only a specific verifier can perform integrity checking tasks and that verifier cannot gain any knowledge about the data. Yan et al. proposed a remote data possession checking scheme with the designated verifier, which can guarantee that only the designated verifier can check data integrity, whereas others cannot do it. However, this scheme relies on public key infrastructure technology and does not consider data privacy protection issues. To overcome these shortcomings, we propose an identity-based remote data possession checking scheme that satisfies the data owner's requirement to specify a unique verifier. Moreover, in this scheme, we use a random integer to blind data integrity proof to protect data privacy and use Merkle hash tree structure to achieve dynamic update of data. At the same time, our scheme can avoid the complex certificate management in public key infrastructure. We proved the safety of our scheme based on the discrete logarithm assumption and the computational Diffie-Hellman assumption. Theoretical analysis and experimental results show that our scheme is feasible and effective in practical applications.

computer science, information systems,telecommunications,engineering, electrical & electronic

Yuan Zhang,Chunxiang Xu,Xiaohui Liang,Hongwei Li,Yi Mu,Xiaojun Zhang

DOI: https://doi.org/10.1109/mcc.2016.94

2016-01-01

IEEE Cloud Computing

Abstract:Cloud storage services allow users to outsource their data to cloud servers to save local data storage costs. However, unlike using local storage devices, users do not physically manage the data stored on cloud servers; therefore, the data integrity of the outsourced data has become an issue. Many public verification schemes have been proposed to enable a third-party auditor to verify the data integrity for users. These schemes make an impractical assumption—the auditors have enough computation capability to bear expensive verification costs. In this paper, we propose a novel public verification scheme for the cloud storage using indistinguishability obfuscation, which requires a lightweight computation on the auditor and the delegate most computation to the cloud. We further extend our scheme to support batch verification and data dynamic operations, where multiple verification tasks from different users can be performed efficiently by the auditor and the cloud-stored data can be updated dynamically. Compared with other existing works, our scheme significantly reduces the auditor’s computation overhead. Moreover, the batch verification overhead on the auditor side in our scheme is independent of the number of verification tasks. Our scheme could be practical in a scenario, where the data integrity verifications are executed frequently, and the number of verification tasks (i.e., the number of users) is numerous; even if the auditor is equipped with a low-power device, it can verify the data integrity efficiently. We prove the security of our scheme under the strongest security model proposed by Shi et al. (ACM CCS 2013). Finally, we conduct a performance analysis to demonstrate that our scheme is more efficient than other existing works in terms of the auditor’s communication and computation efficiency.

Yongjian Liao,Zhiguang Qin

DOI: https://doi.org/10.1109/iccis.2008.4670894

2008-01-01

Abstract:There are only two possible signers in designated verifier signature(DVS) scheme, thus anyone else can not know who is the real signer according to signature/message pairs. Lipmaa et al. discovered delegatability attack on almost all existing designated verifier signature according to original definition of DVS, and later Li et al. subdivided the delegation and defined verifier-only delegatability. Here, we point out the formal definition of verifier-only delegatability is not reasonable and redefine it. Meanwhile we show ZFI DVS scheme is not verifier-only delegatable, but is delegatable, and show ZJ DVS scheme is verifier-only delegatable scheme. We present notion of signer-only delegatability and put forward general construction from verifier-only delegatable DVS scheme to signer-only delegatable DVS scheme, vice verse. We using ZJ DVS scheme as example to show how to construct signer-only delegatable scheme. Finally we classify delegatable DVS scheme into both signer and designated verifier delegatable scheme, verifier-only delegatable scheme and signer-only scheme.

Fengying Li,Qingshui Xue,Jiping Zhang,Zhenfu Cao

DOI: https://doi.org/10.1007/978-3-642-03354-4_31

2009-01-01

Abstract:In a multi-proxy multi-signature scheme, one original group delegates a group of proxy signers to sign messages on behalf of the original signers. When the proxy signature is created, all of proxy signers cooperate to generate valid proxy signatures. Based on Cha and Cheon's ID-based signature scheme, a multi-proxy multi-signature scheme based on bilinear-pairs is proposed. The proposed scheme can provide the security properties of proxy protection, verifiability, strong identifiability, strong unforgeability, strong repudiability, distinguishability and prevention of misuse of proxy signing power. That is, internal attacks, external attacks, collusion attacks, equation attacks and public key substitution attacks can be resisted.

Aixin Zhang,Shalin Huang,Xinghua Wu,Shilin Wang,Jianhua Li

DOI: https://doi.org/10.1109/CSCloud/EdgeCom.2018.00011

2018-01-01

Abstract:The security of outsourced data has been a key issue in cloud applications. Previous researches have focused on the remote data auditing and verification schemes. Although some of them have the properties of dynamic update and public audit, most of these schemes implicitly assume an honest client. Actually, the client has the motivations to corrupt the verification results against server, and the server may suspect the verification results under the situation where the client is dishonest. Up to now, few solutions have been proposed when both the client and server are not fully trusted and either side could be malicious. In this paper, a strict verifiable database (sVDB) protocol is proposed to tackle this problem. The concrete construction based on the bilinear pair technique can support client's real-time query and batch update operations. We prove the security of the scheme by contradiction under the square computational Diffie-Hellman assumption. We also implement the protocol and carry out several experiments to compare its performance with the state-of-the-art VDB scheme using vector commitment. All the results show that the proposed sVDB scheme achieves good security performance and high computation efficiency.

Sunder Lal,Vandani Verma

DOI: https://doi.org/10.48550/arXiv.0904.3420

2009-04-22

Abstract:This paper presents a new identity based strong designated verifier parallel multi-proxy signature scheme. Multi-Proxy signatures allow the original signer to delegate his signing power to a group of proxy signers. In our scheme, the designated verifier can only validate proxy signatures created by a group of proxy signer.

Cryptography and Security

Yanli Ren,Ning Ding,Tianyin Wang,Haining Lu,Dawu Gu

DOI: https://doi.org/10.1007/s11432-016-5550-8

2016-01-01

Science China Information Sciences

Abstract:>Dear editor,Outsourcing of computation has received widespread attention with the development of cloud computing and the proliferation of mobile devices[1].Despite the huge benefits that it provides,it also encounters some security concerns and other challenges.First,the computational

秦志光,廖永建

DOI: https://doi.org/10.3969/j.issn.1001-0548.2009.05.033

2009-01-01

Abstract:Compared with ordinary digital signature,the designated verifier signature scheme makes it possible for a signer to convince a designated verifier that she has signed a message in such a way that the designated verifier cannot transfer the signature to a third party.In designated verifier signature scheme,no third party can even verify the validity of a designated verifier signature since it must use the designated verifier's secret key in verification.Recently,an ID-based strong designated verifier scheme,ID-based designated verifier proxy signature scheme,and partial cryptanalysis ware proposed.In this paper,we show that the designated verifier signature scheme is delegatable,and the designated verifier proxy signature is forgeable since construction of the proxy scheme is unreasonable.

Zhen Xu,Cong Wang,Kui Ren,Lingyu Wang,Bingsheng Zhang

DOI: https://doi.org/10.1109/tifs.2014.2352457

2013-01-01

Abstract:Cloud computing provides a “pay-per-use” utility service which offers the customer the economical access to large amount of computing resources with minimal management overhead. Despite the tremendous benefits, computation outsourcing also eliminates the customer's ultimate control over the data computation process, which makes securing cloud computation an imperative and challenging task, especially in the aspect of integrity verification. To address these challenges, in this paper we propose to research on integrity verification mechanisms for secure outsourced computations in cloud computing. In particular, we focus on outsourcing the widely applicable engineering optimization problem, i.e., convex optimization, and aim to investigate efficient integrity verification mechanisms using application-specific techniques. Our security design does not require the use of heavy cryptographic tools. Instead, we leverage the inherent structure of the optimization problems and the proof-carrying characteristics of the solving algorithms to achieve efficient integrity verification. The proposed design provides substantial computational savings on the customer side and introduce marginal overhead on the cloud side. We further prove its correctness and soundness. The extensive experiments under real cloud environment show our mechanisms ensure strong integrity assurance with high efficiency on both the customer and cloud sides and are readily applicable in practice.

Yanli Ren,Ning Ding,Xinpeng Zhang,Haining Lu,Dawu Gu

DOI: https://doi.org/10.1145/2897845.2897881

2016-01-01

Abstract:The problem of securely outsourcing computation has received widespread attention due to the development of cloud computing and mobile devices. In this paper, we first propose a secure verifiable outsourcing algorithm of single modular exponentiation based on the one-malicious model of two untrusted servers. The outsourcer could detect any failure with probability 1 if one of the servers misbehaves. We also present the other verifiable outsourcing algorithm for multiple modular exponentiations based on the same model. Compared with the state-of-the-art algorithms, the proposed algorithms improve both checkability and efficiency for the outsourcer. Finally, we utilize the proposed algorithms as two subroutines to achieve outsource-secure polynomial evaluation and ciphertext-policy attributed-based encryption (CP-ABE) scheme with verifiable outsourced encryption and decryption.

Guilin Wang,Fubiao Xia,Yunlei Zhao

DOI: https://doi.org/10.1007/978-3-642-25516-8_28

2011-01-01

Abstract:After the introduction of designated confirmer signatures (DCS) by Chaum in 1994, considerable researches have been done to build generic schemes from standard digital signatures and construct efficient concrete solutions. In DCS schemes, a signature cannot be verified without the help of either the signer or a semi-trusted third party, called the designated confirmer . If necessary, the confirmer can further convert a DCS into an ordinary signature that is publicly verifiable. However, there is one limit in most existing schemes: the signer is not given the ability to disavow invalid DCS signatures. Motivated by this observation, in this paper we first propose a new variant of DCS model, called designated confirmer signatures with unified verification , in which both the signer and the designated confirmer can run the same protocols to confirm a valid DCS or disavow an invalid signature. Then, we present the first DCS scheme with unified verification and prove its security in the random oracle (RO) model and under a new computational assumption, called Decisional Co-efficient Linear (D-co-L) assumption, whose intractability in pairing settings is analyzed in generic group model. The proposed scheme is constructed by encrypting Boneh, Lynn and Shacham's pairing based short signatures with signed ElGamal encryption. The resulting solution is efficient in both aspects of computation and communication. In addition, we point out that the proposed concept can be generalized by allowing the signer to run different protocols for confirming and disavowing signatures.

Jining Zhao,Chunxiang Xu,Fagen Li,Wenzheng Zhang

DOI: https://doi.org/10.1587/transfun.E96.A.2709

2013-01-01

Abstract:In the Cloud computing era, users could have their data outsourced to cloud service provider (CSP) to enjoy on-demand high quality service. On the behalf of the user, a third party auditor (TPA) which could verify the real data possession on CSP is critically important. The central challenge is to build efficient and provably secure data verification scheme while ensuring that no users' privacy is leaked to any unauthorized party, including TPA. In this paper, we propose the first identity-based public verification scheme, based on the identity-based aggregate signature (IBAS). In particular, by minimizing information that verification messages carry and TPA obtains or stores, we could simplify key management and greatly reduce the overheads of communication and computation. Unlike the existing works based on certificates, in our scheme, only a private key generator (PKG) has a traditional public key while the user just keeps its identity without binding with certificate. Meanwhile, we utilize privacy-preserving technology to keep users' private data off TPA. We also extend our scheme with the support of batch verification task to enable TPA to perform public audits among different users simultaneously. Our scheme is provably secure in the random oracle model under the hardness of computational Diffie-Hellman assumption over pairing-friendly groups and Discrete Logarithm assumption.