Hu Xiong,Songyang Wu,Fagen Li,Zhiguang Qin

DOI: https://doi.org/10.1007/s11277-014-2106-3

IF: 2.017

2015-01-01

Wireless Personal Communications

Abstract:As an important approach to resist the threat of key leakage, key insulated security allows secret keys to be periodically updated by using a physically-secure but computation-limited device. Recently, key insulated mechanism has been introduced into identity based (ID-based) signature to solve the key-leakage problem in ID-based signature scenarios. In this paper, we present two compact ID-based key-insulated signature schemes that try to minimize the total amount of message and signature. Compared with the up-to-date ID-based key-insulated signatures, our schemes enjoy the minimum net bandwidth and computation overhead. We also provide formal security proofs of our schemes under the Computational Diffie–Hellman assumption in the random oracle model. We focus on potential applications of our schemes to secret handshakes, but we believe they will find many other applications as well.

Jinyong Chang,Yanyan Ji,Bilin Shao,Maozhi Xu,Rui Xue

DOI: https://doi.org/10.1109/TNET.2020.3013902

2020-12-15

IEEE/ACM Transactions on Networking

Abstract:Homomorphic signature is an extremely important public key authentication technique for network coding to defend against pollution attacks. As a public key cryptographic primitive, it also encounters the same problem of how to confirm the relationship between some public key $pk$ and the identity $ID$ of its owner. In the setting of distributed network coding, the intermediate and destination nodes need to use the public key of source node S to check the validity of vector-signature pairs. Therefore, the binding of S and its corresponding public key becomes crucial. The popular and traditional solution is based on certificates which are issued by a trusted certification authority (CA) center. However, the generation and management of certificates is extremely cumbersome. Hence, in recent work, Lin et al. proposed a new notion of identity-based homomorphic signature, which intends to avoid using certificates. But the key escrow problem is inevitable for identity-based primitives. In this article, we propose another new notion (for network coding): certificateless homomorphic signature (CLHS), which is a compromise for the above two techniques. In particular, we first describe the definition and security model of certificateless homomorphic signature. Then based on bilinear map and the computational Diffie-Hellman (CDH) assumption, give a concrete implementation and detailedly analyze its security. Finally, performance analysis illustrates that our construction is practical.

telecommunications,computer science, theory & methods,engineering, electrical & electronic, hardware & architecture

Jie Gu,Zhi Xue

DOI: https://doi.org/10.1109/lcomm.2011.122810.102229

IF: 3.5529

2011-01-01

IEEE Communications Letters

Abstract:Recently, an unlinkable secret handshakes scheme was proposed by Huang and Cao who claimed their scheme achieved affiliation-hiding, unlinkability and meanwhile was more efficient than the previous ones. However, Su, Youn and Park pointed out that the scheme is insecure due to some design flaw, respectively. In this paper, inspired by the security review of their work, we modify Huang-Cao scheme and propose an improved secret handshakes scheme with unlinkability. Our proposal not only conquers the security flaw in Huang-Cao scheme but also is more efficient than the previous schemes.

ZHU Chang-sheng,LIU Peng-hui,WANG Qing-rong,CAO Lai-cheng

DOI: https://doi.org/10.3724/sp.j.1087.2011.01862

2011-01-01

Journal of Computer Applications

Abstract:How to keep mutual anonymity between two entities is one of the critical issues for Trusted Computation(TC).According to the characteristics of TC,an efficient password-based authenticated key exchange scheme was proposed.Adopting threshold cryptography and fuzzy ID set,the scheme achieved mutual anonymity between user and server sharing ID set.On the premise of secure hashing,the analysis and the proving procedure based on the Random Oracle Model(ROM) show this scheme is secure against dictionary attack and resource-depletion DoS(Denial-of-Service) attack under the computational Diffie-Hellman intractability assumption.This scheme effectively preserves the user's privacy and server's privacy,and compared with other schemes such as VIET et al.'s scheme,it is more efficient.

Huang Xiu-Ju,Li Zhen-Zhen,Li Zi-Chen

DOI: https://doi.org/10.1007/s10773-022-05171-1

2022-01-01

International Journal of Theoretical Physics

Abstract:Characterized by integrity and non-repudiation, digital signatures play an essential role in real life. Quantum digital signatures, which outperform classical types generally in safety, have been widely used in secure communications. In this paper, a novel quantum signature scheme based on quantum encryption, XOR encryption and secret sharing without entanglement is designed. Furthermore, it can be extended to a quantum multi-signature scheme. Unlike existing schemes, it is more efficient in guaranteeing safety, more practical and does not need to prepare a large number of entanglements or operations.

Xiaogang Cheng,Ren Guo

2024-09-12

Abstract:A new concept of quantum secret sharing is introduced, in which collaboration among participants are encourage. And the dealer can ask the participants to send back their share and revoke the secret before a predefined date or event, i.e. so-called seal property. We also give two concrete constructions of CE-QSS-Seal (Collaboration-Encouraging Quantum Secret Sharing with Seal property) scheme. The first one is unconditional secure and achieve the optimal bound of a seal scheme. The second one improve the optimal bound of seal by introducing post-quantum secure computational assumption.

Quantum Physics,Cryptography and Security

Lele Li,Zhaowei Han,Zhihui Li,Feiting Guan,Li Zhang

DOI: https://doi.org/10.1007/s11128-023-04236-2

IF: 1.965

2024-02-04

Quantum Information Processing

Abstract:Quantum secret sharing is widely applied in the fields, such as communications and data transmission. In this paper, we propose an authenticable dynamic quantum multi-secret sharing scheme based on the Chinese remainder theorem. In our scheme, the dynamic update of the participants set is permissible without changing the shared secret. To share multi-secret, the distributor generates corresponding shares based on the Chinese remainder theorem and monotone span program, and the GHZ state acts as the information carrier traveling among the participants in the authorization set; the participants utilize the Hadamard operator and Pauli operators to embed their shares in the traveling particles. In this way, the participants will reconstruct multiple secrets. Furthermore, the proposed quantum digital signature algorithm based on entanglement swapping is utilized to realize the identity authentication between participants. The security analysis shows that the proposed scheme can resist intercept-resend attack, entanglement-measurement attack, internal dishonest participant attack, add or withdraw participant attack, and denial attack.

physics, multidisciplinary,quantum science & technology, mathematical

Jin Jiang,Zhihong Huang,Lei Li

DOI: https://doi.org/10.1109/cisw.2007.4425595

2007-01-01

Abstract:Different from conventional authentication approaches, an authentication scheme using n-dimensional construction method based on circle property(henceforth called C- Scheme) is proposed in paper[17]. Then the scheme is analyzed in improved respectively in paper[5] and paper[16]. However, this paper shows a weakness of the C-Scheme and proposes an improvement to the weakness by allocating unique secret parameters for different users in the C- Scheme. After analysis, the improved C-Scheme achieves a higher security level.

Xiaojun Zhang,Chunxiang Xu,Chunhua Jin,Junwei Wen

DOI: https://doi.org/10.1504/ijesdf.2015.069607

2015-01-01

International Journal of Electronic Security and Digital Forensics

Abstract:Proxy-signcryption is a variation of an ordinary signcryption scheme and has been used in many applications where the delegation of rights is quite common. In a proxy-signcryption scheme, an original signcrypter needs to delegate his signcryption capability to a proxy signcrypter to signcrypt messages on behalf of the original signcrypter. By combining the functionalities of proxy signature with identity-based signcryption, in this paper, we propose a novel identity-based proxy-signcryption scheme (IBPSC) from lattice assumptions in the random oracle model. Meanwhile, the security requirements of our IBPSC scheme have been analysed, and our scheme can even resist quantum computer attacks. Compared with existing IBPSC schemes, our scheme is more secure and more efficient. To the best of our knowledge, there is still no relevant IBPSC scheme based on lattice, which is an interesting stepping stone in the post-quantum cryptographic communication.

Min Wang,Gui-Lu Long

DOI: https://doi.org/10.1007/s11432-024-4177-5

2024-11-10

Science China Information Sciences

Abstract:Access authentication scheme plays a foundational role in ensuring the security of communication networks. However, an access authentication scheme with high security and efficiency is still lacking in quantum communication networks. In this paper, we propose a lattice-based access authentication scheme for quantum communication networks in the manner of real-time interaction with the network control center, which could achieve properties of mutual authentication, conditional anonymity, data confidentiality, unforgeability, undeniability, and data integrity. We utilize the digital signature algorithm CRYSTALS-Dilithium and the key-establishment algorithm CRYSTALS-KYBER, both of which have been selected for standardization by the National Institute of Standards and Technology, to realize secure access authentication for users of the quantum communication networks. Specifically, in the quantum secure direct communication network, key-establishment is replaced by the verification of signatures encoded in quantum states. Our results demonstrate the feasibility of establishing a quantum-secure communication network.

computer science, information systems,engineering, electrical & electronic

Cong Peng,Jianhua Chen,Lu Zhou,Kim-Kwang Raymond Choo,Debiao He

DOI: https://doi.org/10.1016/j.jisa.2020.102504

IF: 4.96

2020-01-01

Journal of Information Security and Applications

Abstract:Digital signatures are important cryptographic primitive for authentication. To resist quantum attacks, many post-quantum signature schemes have been proposed. Among them, isogeny-based signature schemes, such as SeaSign, rapid development in recent years along with the proposed CSIDH construction. In this paper, inspired by the Fiat-Shamir transform, we construct the first identity-based signature scheme based on isogenies from the isogeny-based identification scheme. Then, we analyze its security in the random oracle model under the hardness of the isogeny problem, and demonstrate that it achieves the required security properties. Finally, we evaluate the performance and give the corresponding computational and storage costs. (C) 2020 Elsevier Ltd. All rights reserved.

Xing-Lan Zhang,Li-Yu Zuo,Sheng-Lin Yin

DOI: https://doi.org/10.1007/s10773-021-04896-9

2021-07-30

International Journal of Theoretical Physics

Abstract:The main defects of the existing quantum secret sharing schemes are as follows: (1) The identity of the secret sender cannot be confirmed. Receivers of shared secret information may be vulnerable to Trojan attacks; (2) If a malicious attacker Eve impersonates the identity of the receiver, she can finally obtain all the information of the secret that Alice shared; (3) In the process of secret recovery, it is necessary to transmit qubits among all participants involved in secret recovery. Sometimes, the same particle needs to be operated on by all participants to achieve secret sharing, which increases the possibility of eavesdropping and also increases the probability of errors. In this work, we proposed a quantum secret sharing scheme with authentication, the receiver performs corresponding operations on qubits of Greenberger-Horne-Zeilinger(GHZ) state based on the key string calculated by the shared identity number and random Error Correction Code(ECC), the secret sender can calculate the corresponding measurement basis(MB) through the information she has, and then inform the measurement party. This process realizes the mutual authentication between the sender and the receiver. It can protect against identity impersonation attacks, through the ECC verification, it also can resist intercept-resend attacks.

physics, multidisciplinary

Fagen Li,Yong Yu

DOI: https://doi.org/10.1109/icccas.2008.4657820

2008-01-01

Abstract:Signcryption is a cryptographic primitive that performs digital signature and public key encryption simultaneously, at a lower computational costs and communication overheads than the signature-then-encryption approach. Recently, two identity-based threshold signcryption schemes [12], [27] have been proposed by combining the concepts of identity-based threshold signature and signcryption together. However, the formal models and security proofs for both schemes are not considered. In this paper, we formalize the concept of identity-based threshold signcryption and give a new scheme based on the bilinear pairings. We prove its confidentiality under the Decisional Bilinear Diffie-Hellman assumption and its unforgeability under the Computational Diffie-Hellman assumption in the random oracle model. Our scheme turns out to be more efficient than the two previously proposed schemes.

Changbin Lu,Fuyou Miao,Junpeng Hou,Wenchao Huang,Yan Xiong

DOI: https://doi.org/10.1007/s11128-019-2509-x

IF: 1.965

2020-01-01

Quantum Information Processing

Abstract:Quantum secret sharing (QSS) schemes without entanglement have huge advantages in scalability and are easier to realize as they only require sequential communications of a single quantum system. However, these schemes often come with drawbacks such as exact (n, n) structure, security flaws and absences of effective cheating detections. To address these problems, we propose a verifiable framework by utilizing entanglement-free states to construct (t, n)-QSS schemes. Our work is the heuristic step toward information-theoretical security in entanglement-free QSS, and it sheds light on how to establish effective verification mechanism against cheating. As a result, the proposed framework has a significant importance in constructing QSS schemes for versatile applications in quantum networks due to its intrinsic scalability, flexibility and information-theoretical security.

Hua-Lei Yin,Yao Fu,Chen-Long Li,Chen-Xun Weng,Bing-Hong Li,Jie Gu,Yu-Shuo Lu,Shan Huang,Zeng-Bing Chen

DOI: https://doi.org/10.1093/nsr/nwac228

IF: 20.6

2022-10-22

National Science Review

Abstract:Abstract Cryptography promises four information security objectives, namely, confidentiality, integrity, authenticity, and non-repudiation, to support trillions of transactions annually in digital economy. Efficient digital signatures, ensuring integrity, authenticity, and non-repudiation of data with information-theoretical security are highly urgent and intractable open problems in cryptography. Here, we propose a high-efficiency quantum digital signature (QDS) protocol using asymmetric quantum keys acquired via secret sharing, one-time universal2 hashing, and one-time pad. We just need to use a 384-bit key to sign documents of up to 264 lengths with a security bound of 10−19. If one-megabit document is signed, the signature efficiency is improved by more than 108 times compared with previous QDS protocols. Furthermore, we build the first all-in-one quantum secure network integrating information-theoretically secure communication, digital signatures, secret sharing, and conference key agreement and experimentally demonstrate this signature efficiency advantage. Our work completes the cryptography toolbox of the four information security objectives.

multidisciplinary sciences

Fagen Li,Xiangjun Xin,Yupu Hu

DOI: https://doi.org/10.1504/IJSN.2008.020095

2008-01-01

Abstract:A (t, n) threshold proxy signcryption scheme allows t or more proxy signcrypters from a designated group of n proxy signcrypters to signcrypt messages on behalf of an original signcrypter. In this paper, a new identity-based threshold proxy signcryption scheme from bilinear pairings is proposed. Our construction is based on Baek and Zheng's pairing-based verifiable secret sharing scheme and Libert and Quisquater's identity-based signcryption scheme. As compared to Wang and Liu's identity-based threshold proxy signcryption scheme, our scheme is more secure and efficient.

Mingwu Zhang,Bo Yang,Shenglin Zhu,Wenzheng Zhang

DOI: https://doi.org/10.1007/978-3-540-69304-8_14

2008-01-01

Abstract:Three of the most important services offered by cryptography are confidential, private and authenticatability in distributed systems, such as P2P, trust negotiation and decentralized trust management. Information provider secretly encrypts a message with a hidden approach to protect message security and his privacy. Ring signcryption is an important way to realize full anonymity where the signcrypter cannot verify that this ciphertext was produced by himself. In this paper, we propose a novel construction of efficient secret authenticatable anonymous signcryption scheme in which only the actual signcrypter can authenticate that the ciphertext was produced by himself. The receiver cannot distinguish who the actual signcrypter is in the group even though he obtains all group members' private keys. Proposed scheme has the following properties: semantic security, signcrypter anonymity, signcrypter secret authenticatability, and unforgeability. We prove its security in the random oracle model under the DBDH assumption.

Vahid R. Asadi,Kohdai Kuroiwa,Debbie Leung,Alex May,Sabrina Pasterski,Chris Waddell

2024-09-24

Abstract:The conditional disclosure of secrets (CDS) primitive is among the simplest cryptographic settings in which to study the relationship between communication, randomness, and security. CDS involves two parties, Alice and Bob, who do not communicate but who wish to reveal a secret $z$ to a referee if and only if a Boolean function $f$ has $f(x,y)=1$. Alice knows $x,z$, Bob knows $y$, and the referee knows $x,y$. Recently, a quantum analogue of this primitive called CDQS was defined and related to $f$-routing, a task studied in the context of quantum position-verification. CDQS has the same inputs, outputs, and communication pattern as CDS but allows the use of shared entanglement and quantum messages. We initiate the systematic study of CDQS, with the aim of better understanding the relationship between privacy and quantum resources in the information theoretic setting. We begin by looking for quantum analogues of results already established in the classical CDS literature. Doing so we establish a number of basic properties of CDQS, including lower bounds on entanglement and communication stated in terms of measures of communication complexity. Because of the close relationship to the $f$-routing position-verification scheme, our results have relevance to the security of these schemes.

Quantum Physics

Debiao He,Baojun Huang,Jianhua Chen

DOI: https://doi.org/10.1049/iet-ifs.2012.0176

2013-01-01

IET Information Security

Abstract:The certificateless public key cryptography has attracted wide attention since it could solve the certificate management problem in the traditional public key cryptography and the key escrow problem in the identity-based public key cryptography. Recently, several certificateless short signature schemes, which could satisfy the requirement of low-bandwidth communication environments, have been proposed. However, most of them are not secure against either the Type I adversary or the Type II adversary. In this study, the authors propose a new efficient certificateless short signature scheme. The analysis shows the authors' scheme has better performance than the related schemes and is secure against both of the super Type I and the super Type II adversaries.

SHI Run-hua,ZHONG Hong,HUANG Liu-sheng

DOI: https://doi.org/10.3969/j.issn.1003-5060.2008.05.008

2008-01-01

Abstract:This paper proposes a multi-secret sharing scheme in common access structure.The scheme can dynamically add or delete the participants and dynamically renew multiple secrets.The theoretic analysis shows that the scheme can guarantee the security of the secret sharing and it is computationally secure,and the experiment results prove that it is very easy and efficient to realize it.Furthermore,to detect cheating and identify the cheater,a verified scheme is presented accordingly.In the verified scheme,the respective participants receiving the shares can verify their validity based on the discrete logarithm problem(DLP).