Li-Hong Guo,Hai-Tao Wu,Qing Yang

DOI: https://doi.org/10.2991/icwcsn-16.2017.32

2016-01-01

Abstract:Proxy signature schemes have been suggested for use in a number of applications, so the security of proxy signature scheme is more and more important. However, at present, almost all the proxy signature schemas were proven secure in the random oracle model, which has received a lot of criticism. Recently, Yu et al. proposed a designated verifier proxy signature scheme without random oracles by using Waters hashing technique. The formal models and a strictly logical process were provided in this schema. But Kang et al. show some attacks on Yu et al.s scheme and offer its insecurity proof. In this paper, in order to overcome the weaknesses in Yu et al.s scheme we make supplements on it and make it secure resist Kang et al.s attacks.

Jie XU,Hong-xiang SUN,Qiao-yan WEN,Hua ZHANG

DOI: https://doi.org/10.1016/s1005-8885(11)60288-4

2012-01-01

The Journal of China Universities of Posts and Telecommunications

Abstract:Multi-proxy signature is a scheme that an original signer delegates his or her signing capability to a proxy group. In the scheme, only the cooperation of all proxy signers in the proxy group can create a signature on behalf of the original signer. Jin and Wen firstly defined the formal security model of certificateless multi-proxy signature (CLMPS) and proposed a concrete CLMPS scheme. However, their construction has three problems: the definition of the strengthened security model is inaccurate, the concrete signature scheme has a security flaw, and the proof of the security is imperfect. With further consideration, a remedial strengthened security model is redefined, and an improved scheme is also proposed, which is existentially unforgeable against adaptively chosen-warrant, chosen-message and chosen-identity attacks in the random oracles. In this condition, the computational Diffie-Hellman (CDH) assumption is used to prove full security for our CLMPS scheme.

Hu Xiong,Fagen Li,Zhiguang Qin

DOI: https://doi.org/10.15388/informatica.2010.288

2010-01-01

Informatica

Abstract:A proxy signature scheme enables an original signer to delegate its signing capability to a proxy signer and then the proxy signer can sign a message on behalf of the original signer. Recently, in order to eliminate the use of certificates in certified public key cryptography and the key-escrow problem in identity-based cryptography, the notion of certificateless public key cryptography was introduced. In this paper, we first present a security model for certificateless proxy signature schemes, and then propose an efficient construction based on bilinear pairings. The security of the proposed scheme can be proved to be equivalent to the computational Diffie-Hellman problem in the random oracle with a tight reduction.

XIE Qi,WU JiYi,WANG GuiLin,CHEN DeRen,YU XiuYuan

2012-01-01

Abstract:Mutual authentication between the user and the public cloud is essential requirement for the user to access the public cloud in cloud computing.In 2011,Juang et al.proposed a first authentication scheme based on proxy signature.The advantage of the scheme is that the user only needs to register on his home service cloud(HSC),and can pass through the authentication of the public cloud with the help of his HSC.However, their scheme has three weaknesses:1)the user’s HSC needs to update the user’s public key in each session to protect the user’s privacy;2)HSC may suffer from network jam when many users in the same HSC need to register on different public clouds simultaneously;and 3)a secret key should be shared between HSC and visiting cloud.To overcome these weaknesses,a provably secure convertible proxy signcryption for privacy preserving is proposed.Based on this scheme,a novel one-round authentication protocol is proposed,which the user only needs to register on his HSC,and can pass through the authentication of the visiting cloud without the help of his HSC.On the other hand,the proposed protocol can provide some nice properties,such as user privacy protection, non-repudiation,without updating the user’s public key,and secret key does not have to be shared between HSC and visiting cloud.In addition,the proposed scheme is provably secure in the random oracle model,and is more efficient than Juang et al.’s scheme.

Jianhong Zhang,Yuehai Wang

2019-01-01

Abstract:.As a significant cryptographical primitive, proxy re-signature(PRS) technique is broadly applied to distributed computation, copyright transfer and hidden path transfer because it permits that a proxy translates an entity’s signature into the other entity’s signature on the identical data. Recently, to discard time-consuming pairing operator and intricate certificate-maintenance, Wang et al. proposed two efficient pairing-free ID-based PRS schemes, and declared that their schemes were provably secure in the ROM. Very unluckily, in this investigation, we point out that Wang et al.’s schemes suffer from attacks of universal forgery by analysing their security, i.e., anyone can fabricate a signature on arbitrary file. After the relevant attacks are shown, the reasons which result in such attacks is analyzed. Finally, we discuss the corresponding improved method. Key–Words: ID-based PRS, integer factorization problem, universal forgeability, security attack

Qi Xie,Guilin Wang,Fubiao Xia,Deren Chen

DOI: https://doi.org/10.1002/cpe.3058

2013-01-01

Concurrency and Computation Practice and Experience

Abstract:By integrating self-certified public-key systems and the designated verifier proxy signature with message recovery, Wu and Lin proposed the first self-certified proxy convertible authenticated encryption (SP-CAE) scheme and its variants based on discrete logarithm problem (DLP) in 2009. Though their schemes are claimed provably secure, we demonstrate that their schemes are existentially forgeable under adaptive chosen warrants, unconfidentiable and verifiable under adaptive chosen messages and designated verifiers. Then we propose a provably secure SP-CAE scheme in the random oracle model.

Yu Yong,Sun Ying,Yang Bog,Xu Chunxiang,Liu Shuanggen

IF: 1.019

2008-01-01

Chinese Journal of Electronics

Abstract:In a multi-proxy signature scheme, an original signer delegates his or her signing capability to a group of proxy signers, in such a way that only the cooperation of all the proxy signers can generate a valid proxy signature on behalf of the original signer. Several multi-proxy signature schemes have been proposed so far. However, these works either only provide informal security analysis, or provide a security proof in the random oracle model, which has received a lot of criticism that the proofs in the random oracle model are not proofs. In this paper, we propose a new construction of multi-proxy signature that can be proven secure without using the random oracles. As for the security, we divide the potential adversaries into three kinds according to their attack power, and prove that the proposed scheme is unforgeable against all kinds of adversaries, assuming the Computational Diffie-Hellman problem is intractable. Furthermore, the new scheme has the property that the size of a multi-proxy signature is independent on the number of the proxy signers. As far as we know, this is the first multi-proxy signature scheme that can be proven secure in the standard model.

Yong Yu,Chunxiang Xu,Xinyi Huang,Yi Mu

DOI: https://doi.org/10.1016/j.csi.2008.05.003

IF: 3.721

2009-01-01

Computer Standards & Interfaces

Abstract:Since the concept of proxy signature was introduced in 1996, many proxy signature schemes have been proposed. Among of them, the requirement of proxy signer's privacy protection is needful in some practical applications. In this paper, a new and provably secure anonymous proxy signature scheme from bilinear pairing, which is the organic combination of proxy signature and ring signature, is proposed to provide the privacy protection for the proxy signer. As for the security analysis, we classify the adversaries into three types according to different resources they can obtain and prove in the random oracle model that, the proposed scheme is unforgeable against all kinds of adversaries. Compared with Zhang et al.'s proxy ring signature scheme proposed in 2003, our scheme is more efficient in computation.

Jianhong Zhang,Yong Yu

DOI: https://doi.org/10.1002/dac.2441

2014-01-01

International Journal of Communication Systems

Abstract:Proxy signature is an important delegation technique. It allows that the original signer delegates his or her signing capability to a proxy signer that can generate valid signatures on behalf of the original signer. Until now, most of proxy signature schemes only were proven secure in the random oracle model. And the length of a proxy signature is usually a sum of the lengths of two signatures in most of the proxy signature schemes. Therefore, the factors make the proxy signature unsuitable for many applications with the constrained space or bandwidth. In this paper, we propose a novel short proxy signature scheme in the standard model. And the scheme is probably secure in the standard model. Compared with all existing proxy signature schemes without random oracles, the scheme achieves the following advantages: stronger security, shorter system parameters, shorter signature length and higher efficiency. To the best of our knowledge, this is the first shortest proxy signature scheme in the standard model, whose length is only 320 b for practical 80-bit security level and the same as that of Digital Signature Algorithm. Copyright (C) 2012 John Wiley & Sons, Ltd.

Debiao He,Yitao Chen,Jianhua Chen

DOI: https://doi.org/10.1016/j.mcm.2012.12.037

2013-01-01

Mathematical and Computer Modelling

Abstract:The proxy signature scheme allows a proxy signer to sign messages on behalf of an original signer, a company or an organization. Such schemes have lots of practical applications, particularly in distributed computing, where delegation of rights is quite common. Recently, the certificateless public key cryptography has attracted much attention since it could solve the certificate management problem in the traditional public cryptography and the key escrow problem in the identity-based cryptography. Many certificateless proxy signature schemes using pairing have been proposed. The pairing operation is a very complicated operation. So the performance of these schemes is not very good. In this paper, we propose the first certificateless proxy signature scheme without pairing. We argue that due to significant reduction in costs of computation and storage, our scheme is particularly suitable for practical applications with severely constrained resources. We also show our scheme is secure against both of the super Type I and the super Type II adversaries.

Hu Xiong,Zhiguang Qin,Fagen Li

DOI: https://doi.org/10.6633/ijns.201103.12(2).04

2011-01-01

Abstract:Proxy ring signature allows proxy signer to sign messages on behalf of the original signer while providing anonymity. Certificateless public key cryptography was first introduced by Al-Riyami and Paterson in Asiacrypt 2003. In certificateless cryptography, it does not require the use of certificates to guarantee the authenticity of users' public keys. Meanwhile, certificateless cryptography does not have the key escrow problem, which seems to be inherent in the Identity-based cryptography. In this paper, we introduce the notion of proxy ring signature into certificateless public key cryptography and propose a concrete certificateless proxy ring signature scheme. The security models of certificateless proxy ring signature are also formalized. The security of the proposed scheme can be proved to be equivalent to the computational Diffe-Hellman problem in the random oracle with a tight reduction.

Chenao Hu,Wei Shimin,Zhu Chang-jie,Yang Yi

Abstract:Proxy ring signature,which enables a proxy signer to anonymously sign a message on behalf the original signer,has many advantages.This paper firstly proposed the strongest security model of certificateless proxy ring signature schemes and gave an efficient construction of certificateless proxy ring signature scheme using bilinear maps,with rigorous security proofs in the proposed strongest security model.The security of the scheme was based on the infeasibility of the computational Diffie-Hellman problem.The analysis shows that the new scheme satisfies the security requirements such as unconditional anonymity,strong unforgeability for a proxy ring signature scheme.Due to its security,efficiency and free of certificate management,it may have practical applications in electronic government affairs and mobile agent systems,etc.

Computer Science

FaGen Li,Masaaki Shirase,Tsuyoshi Takagi

DOI: https://doi.org/10.1007/s11432-010-4012-y

2010-01-01

Science China Information Sciences

Abstract:In a proxy signature scheme, an original signer is allowed to delegate his signing power to a designated person, called the proxy signer and the proxy signer is able to sign the messages on behalf of the original signer. Recently, Lu, Dong and Cao proposed two proxy signature schemes for mobile communication (see Sci China Ser F-Inf Sci, 2008, 51(2): 183–195). Although they proved that their schemes are secure in the random oracle model, we disprove their claim and show that their schemes are not secure.

Ying Sun,Yong Yu,Xiaosong Zhang,Jiwen Chai

DOI: https://doi.org/10.1587/transfun.e96.a.721

2013-01-01

IEICE Transactions on Fundamentals of Electronics Communications and Computer Sciences

Abstract:Observing the security of existing identity-based proxy signature schemes was proven in the random oracle model, Cao et al. proposed the first direct construction of identity-based proxy signature secure in the standard model by making use of the identity-based signature due to Paterson and Schuldt. They also provided a security proof to show their construction is secure against forgery attacks Without resorting to the random oracles. Unfortunately, in this letter, we demonstrate that their scheme is vulnerable to insider attacks. Specifically, after a private-key extraction query, an adversary, behaving as a malicious original signer or a malicious proxy signer, is able to violate the unforgeability of the scheme.

WANG Qin,CAO Zhen-Fu

DOI: https://doi.org/10.3321/j.issn:0254-4164.2006.09.017

2006-01-01

Chinese Journal of Computers

Abstract:As a variation of ordinary digital signature scheme, a proxy signature scheme enables a proxy signer to sign messages on behalf of the original signer. Proxy multi-signature is an extension of the basic proxy signature primitive, and permit two or more entities to delegate their signing capabilities to the same other entity. Although many proxy multi-signature schemes have been proposed since 2000, to date, no precise definitions or proofs of security have been provided for them. In this paper, the authors give the syntax of proxy multi-signature schemes and formalize a notion of security for them. The authors also construct a concrete scheme which is provablysecure assuming the underlying groups are bilinear group pair and the computational Co-DiffieHellman problem is hard. Furthermore, the new scheme is very simple and has the property that the size of a proxy multi-signature is independent of the number of the original signers.

Shaohua Tang,Lingling Xu

DOI: https://doi.org/10.1016/j.future.2013.06.003

IF: 7.307

2014-01-01

Future Generation Computer Systems

Abstract:Proxy signatures are important cryptosystems that are widely adopted in different applications. Most of the proxy signature schemes so far are based on the hardness of integer factoring, discrete logarithm, and/or elliptic curve. However, Peter Shor proved that the emerging quantum computers can solve the problem of prime factorization and discrete logarithm in polynomial time, which threatens the security of current RSA, ElGamal, ECC, and the proxy signature schemes based on these problems. We propose a proxy signature scheme based on the problem of Isomorphism of Polynomials (IP) which belongs to a major category of Multivariate Public Key Cryptography (MPKC). The most attractive advantage of our scheme should be its feature to potentially resist the future quantum computing attacks. A formal security proof is also given, which shows that our scheme can reach Existential Unforgeability under an Adaptive Chosen Message Attack with Proxy Key Exposure assuming that the underlying IP signature is Existential Unforgeability under an Adaptive Chosen Message Attack. It is a valuable attempt to explore the provable security in the area of MPKCs. The scheme is implemented in C/C++ programming language, and the performance shows that the scheme is efficient. The parameters we choose can let the security level of our implementation up to 2^8^6^.^5^9.

Ying Sun,Chunxiang Xu,Yong Yu,Yi Mu

DOI: https://doi.org/10.1016/j.jss.2011.02.041

IF: 3.5

2011-01-01

Journal of Systems and Software

Abstract:Many proxy signature schemes have been found in the literature. They (except one) were proven secure in the random oracle model, which has received a lot of criticism. In this paper, we propose a new construction of proxy signature which is strongly unforgeable in the standard model with the computational Diffie-Hellman assumption in bilinear groups. Compared with the only proxy signature without random oracles, our scheme demonstrates stronger security, shorter system parameters and higher efficiency. As far as we know, this is the first proxy signature scheme, which possesses the property of strong unforgeability in the standard model. (C) 2011 Elsevier Inc. All rights reserved.

Ying Sun,Chunxiang Xu,Yong Yu,Bo Yang

DOI: https://doi.org/10.1016/j.comcom.2010.02.002

IF: 5.047

2010-01-01

Computer Communications

Abstract:A proxy multi-signature scheme permits two or more original singers to delegate their signing powers to the same proxy signer. Recently, Liu et al. proposed the first proxy multi-signature that be proven secure in the standard model [Liu et al. (2008) [20]], which can be viewed as a two-level hierarchical signature due to Waters. However, because of the direct employment of Waters’ signature, their scheme needs a relatively large number of public parameters and is not tightly reduced to the security assumption. In this paper, inspired by Boneh, Boyen’s technique and Waters’ technique, we propose a new proxy multi-signature scheme without random oracles, whose unforgeability can be tightly reduced to the CDH assumption in bilinear groups. The new scheme can be regarded as an improvement to overcome the weaknesses of Liu et al.’s scheme. Compared with Liu et al.’s scheme, the improvement has three merits, tighter security reduction, shorter system parameters and higher efficiency.

Zhong-mei Wan,Xue-jia Lai,Jian Weng,Xuan Hong,Yu Long,Wei-wei Jia

DOI: https://doi.org/10.1007/s12204-008-0692-5

2008-01-01

Journal of Shanghai Jiaotong University (Science)

Abstract:In proxy signature schemes, an original signer A delegates its signing capability to a proxy signer B, in such a way that B can sign message on behalf of A. The recipient of the final message verifies at the same time that B computes the signature and that A has delegated its signing capability to B. Recently many identity-based (ID-based) proxy signature schemes have been proposed, however, the problem of key escrow is inherent in this setting. Certificateless cryptography can overcome the key escrow problem. In this paper, we present a general security model for certificateless proxy signature scheme. Then, we give a method to construct a secure certificateless proxy scheme from a secure certificateless signature scheme, and prove that the security of the construction can be reduced to the security of the original certificateless signature scheme.