D. He,J. Chen,R. Zhang

DOI: https://doi.org/10.1002/dac.1330

2011-01-01

International Journal of Communication Systems

Abstract:SUMMARYCertificateless public key cryptography simplifies the complex certificate management in the traditional public key cryptography and resolves the key escrow problem in identitybased cryptography. The certificateless signature scheme is studied widely as an important primitive. Following the pioneering work done by Al‐Riyami et al., many certificateless signature schemes using bilinear pairings have been proposed ever since. However, the relative computation cost of the pairing is approximately 20 times higher than that of the scalar multiplication over the elliptic curve group. To improve the performance we propose a certificateless signature scheme without bilinear pairings. With the running time being reduced greatly, our scheme is more practical than the previous related schemes for practical application. Copyright © 2011 John Wiley & Sons, Ltd.

Liangliang Wang,Kefei Chen,Yu Long,Xianping Mao,Huige Wang

DOI: https://doi.org/10.1109/INCoS.2015.10

2015-01-01

Abstract:Certificateless public key cryptography was proposed to solve the key escrow problem in identity-based public key cryptography. Namely, a user's full private key must be comprised of a partial private key which is provided by the key generation center and a secret value which is chosen by the user. Thus the key generation center can no longer acquire each user's full private key by itself. In 2014, Yeh et al. proposed an efficient certificateless public key signature scheme without bilinear pairings. They also showed their scheme is secure against super adversary under the hardness of breaking discrete logarithm problem in the random model. In this paper, we modify Yeh et al.'s scheme to obtain a new scheme which is more practical than theirs. And our modified scheme can achieve the same security level as Yeh et al.'s scheme under the hardness of breaking discrete logarithm problem in the random model.

Hu Jin,He Debiao,Chen Jianhua

DOI: https://doi.org/10.1109/etcs.2010.159

2010-01-01

Abstract:There are many proposed identity-based digital signature protocols based on bilinear pairings. But the computation of pairing is time-consuming, the performance of those agreements is unacceptable. An Identity based digital signature protocol which based on ECDSA is proposed in this paper. As a result, up to 95% of the computation cost can be saved when compared to other identity based signature protocols using pairing. The proposed protocol can be implemented by the exiting component of ECDSA.

Diego F. Aranha,Elena Pagnin

DOI: https://doi.org/10.1007/978-3-030-30530-7_14

2019-01-01

Abstract:We consider the problem of outsourcing computation on data authenticated by different users. Our aim is to describe and implement the simplest possible solution to provide data integrity in cloud-based scenarios. Concretely, our multi-key linearly homomorphic signature scheme (mklhsdocumentclass[12pt]{minimal}usepackage{amsmath}usepackage{wasysym}usepackage{amsfonts}usepackage{amssymb}usepackage{amsbsy}usepackage{mathrsfs}usepackage{upgreek}setlength{oddsidemargin}{-69pt}egin{document}$${mathsf {mklhs}}$$end{document}) allows users to upload signed data on a server, and at any later point in time any third party can query the server to compute a linear combination of data authenticated by different users and check the correctness of the returned result. Our construction generalizes Boneh et al.’s linearly homomorphic signature scheme (PKC’09 [7]) to the multi-key setting and relies on basic tools of pairing-based cryptography. Compared to existing multi-key homomorphic signature schemes, our mklhsdocumentclass[12pt]{minimal}usepackage{amsmath}usepackage{wasysym}usepackage{amsfonts}usepackage{amssymb}usepackage{amsbsy}usepackage{mathrsfs}usepackage{upgreek}setlength{oddsidemargin}{-69pt}egin{document}$${mathsf {mklhs}}$$end{document} is a conceptually simple and elegant direct construction, which trades-off privacy for efficiency. The simplicity of our approach leads us to a very efficient construction that enjoys significantly shorter signatures and higher performance than previous proposals. Finally, we implement mklhsdocumentclass[12pt]{minimal}usepackage{amsmath}usepackage{wasysym}usepackage{amsfonts}usepackage{amssymb}usepackage{amsbsy}usepackage{mathrsfs}usepackage{upgreek}setlength{oddsidemargin}{-69pt}egin{document}$${mathsf {mklhs}}$$end{document} using two different pairing-friendly curves at the 128-bit security level, a Barreto-Lynn-Scott curve and a Barreto-Naehrig curve. Our benchmarks illustrate interesting performance trade-offs between these parameters, involving the cost of exponentiation and hashing in pairing groups. We provide a discussion on such trade-offs that can be useful to other implementers of pairing-based protocols.

Ting Chen,Huiqun Yu

DOI: https://doi.org/10.12785/amis/070314

2013-01-01

Applied Mathematics & Information Sciences

Abstract:Bilinear pairings based on the Weil and Tate pairings over elliptic curves have been applied for constructive applications in cryptography protocol for years. Most protocol can be proved to be simplified or expanded using the mathematical structures of different types of pairings. In this paper, we applied parings to a remote attestation model, namely cloud based remote attestation(CBA). We give all the detailed algorithms of it and it can guarantee the private of cloud service and solve authorization auditing mechanisms in cloud environment. The bilinear pair can shorten the required key length and reduced bandwidth usage. It meets the requirements of the trusted computing remote attestation and cloud environment at the same time and the virtual TPM structure fulfills the need of standard cloud computing secure measure, such as duty separation. What's more, we prove the scheme is correct and secure under the LRSW assumption, and give the costs comparison between the classic remote attestation, BPBA and CBA which show CBA costs lowly.

DAMIEN VERGNAUD

DOI: https://doi.org/10.1142/s0129054109006474

2009-02-01

International Journal of Foundations of Computer Science

Abstract:The concept of universal designated verifier signatures was introduced by Steinfeld, Bull, Wang and Pieprzyk at Asiacrypt 2003. These signatures can be used as standard publicly verifiable digital signatures but have an additional functionality which allows any holder of a signature to designate the signature to any desired verifier. This designated verifier can check that the message was indeed signed, but is unable to convince anyone else of this fact. We propose new efficient constructions for pairing-based short signatures. Our first scheme is based on Boneh-Boyen signatures and its security can be analyzed in the standard security model. We prove its resistance to forgery assuming the hardness of the so-called strong Diffie-Hellman problem, under the knowledge-of-exponent assumption. The second scheme is compatible with the Boneh-Lynn-Shacham signatures and is proven unforgeable, in the random oracle model, under the assumption that the computational bilinear Diffie-Hellman problem is untractable. Both schemes are designed for devices with constrained computation capabilities since the signing and the designation procedure are pairing-free. Finally, we present extensions of these schemes in the multi-user setting proposed by Desmedt in 2003.

computer science, theory & methods

Sheng Zhong,Wei Ren,Tianqing Zhu,Yi Ren,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1109/access.2018.2853703

IF: 3.9

2018-01-01

IEEE Access

Abstract:Bilinear pairing, an essential tool to construct-efficient digital signatures, has applications in mobile devices and other applications. One particular research challenge is to design cross-platform security protocols (e.g. Windows, Linux, and other popular mobile operating systems) while achieving an optimal security-performance tradeoff. That is, how to choose the right digital signature algorithm, for example, on mobile devices while considering the limitations on both computation capacity and battery life. In this paper, we examine the security-performance tradeoff of four popular digital signature algorithms, namely: CC (proposed by Cha and Cheon in 2003), Hess (proposed by Hess in 2002), BLMQ (proposed by Barreto et al. in 2005), and PS (proposed by Paterson and Schuldt in 2006), on various platforms. We empirically evaluate their performance using experiments on Windows, Android, and Linux platforms, and find that BLMQ algorithm has the highest computational efficiency and communication efficiency. We also study their security properties under the random oracle model and assuming the intractability of the CDH problem, we reveal that the BLMQ digital signature scheme satisfies the property of existential unforgeable on adaptively chosen message and ID attack. The efficiency of PS algorithm is lower, but it is secure under the standard model.

HE Ming-xing,LI Peng-cheng,LI Xiao

DOI: https://doi.org/10.3969/j.issn.1001-0548.2015.06.016

2015-01-01

Abstract:Certificateless cryptography aims at combining the advantages of identity based and traditional certificate-based public key cryptography, so as to avoid the key escrow problem inherent in the identity based system and certificate management in public key infrastructure. In this paper, we propose a new efficient certificateless signature scheme and prove its security in the random oracle model. Furthermore, via pre-computing a bilinear pairing in the setup phase, our scheme only needs to compute one pairing in the verify stage. It is more efficient in computation complexity and communication complexity than that of many previous schemes.

F. Li,X. Xin,Y. Hu

DOI: https://doi.org/10.1080/1206212x.2008.11441891

2008-01-01

Abstract:Signcryption is a public key cryptographic primitive that performs digital signature and public key encryption simultaneously, at lower computational costs and communication overheads than the signature-then-encryption approach. In this paper, an efficient certificate-based signcryption scheme based on bilinear pairings is proposed. As compared to traditional and identity-based signcryption schemes, the proposed scheme has the following advantages: it provides implicit certification; it does not have the private key escrow feature of identity-based signcryption schemes, we also analyze the proposed scheme from security and performance points of view.

He Debiao,Chen Jianhua,Hu Jin

DOI: https://doi.org/10.1007/s12243-011-0244-0

2011-01-01

Abstract:The proxy signature schemes allow proxy signers to sign messages on behalf of an original signer, a company, or an organization. Such schemes have been suggested for use in a number of applications, particularly in distributed computing, where delegation of rights is quite common. Many identity-based proxy signature schemes using bilinear pairings have been proposed. But the relative computation cost of the pairing is approximately twenty times higher than that of the scalar multiplication over elliptic curve group. In order to save the running time and the size of the signature, in this letter, we propose an identity-based signature scheme without bilinear pairings. With the running time being saved greatly, our scheme is more practical than the previous related schemes for practical application.

Fēi Li,Wei Gao,Guilin Wang,Kefei Chen,Xueli Wang

DOI: https://doi.org/10.1504/ijipt.2014.066373

2014-01-01

International Journal of Internet Protocol Technology

Abstract:We propose a new identity-based threshold signature (IBTHS) scheme from bilinear pairings enjoying the following advantages in efficiency, security and functionality. The round-complexity of the threshold signing protocol is optimal since each party pays no other communication cost except broadcasting one single message. The computational complexity of the threshold signing procedure is considerably low since there appears no other time-consuming pairing except two pairings for verifying each signature shares. The communication channel requirement of the threshold signing procedure is the lowest since the broadcast channel among signers is enough. It is provably secure with optimal resilience in the standard model. It is the private key associated with an identity rather than a private key of the private key generator (PKG) that is shared among signature generation servers.

Khalid O. Elaalim,Shoubao Yang

DOI: https://doi.org/10.1109/ITAPP.2010.5566252

2010-01-01

Abstract:In this paper we propose a identity based group signature scheme by using bilinear pairing. This scheme combines two identity based signatures; one is suggested by X. Chen and another by Z. Tan, the advantages of our scheme are extended to (A New ID-based Group Signature Scheme from Bilinear Pairings) and not choose many random numbers in the sign stage as (A novel Identity-Based group signature Scheme from Bilinear Maps). ©2010 IEEE.

Khamseh, Elaheh,Esterabadi, Afshin Soltani

DOI: https://doi.org/10.1007/s11277-024-11120-4

IF: 2.017

2024-05-08

Wireless Personal Communications

Abstract:A certificate-based public key cryptosystem has been developed to solve key escrow problems in ID-based public key cryptography, and to remove computational operations for certificate management. Signcryption is a primitive cryptographic that enables signing and encryption to be done in a one step, improving performance by reducing computational loads and communication overheads. Recent research has suggested some pairing-based cryptographic protocols for public key cryptosystems. However, most use Type-1 pairings, which weaken system security by using supersingular elliptic curves over a finite field of characteristics 2 and 3, making them totally unsafe against new attacks designed for Discrete Logarithm Problems. Furthermore, Type-1 pairings that use supersingular elliptic curves over finite fields of massive characteristics are highly inefficient compared to Type-3 pairings. This work proposes a secure and efficient online/offline trade-off scheme based on Type-3 pairings. The safety of the suggested scheme is asserted according to confidentiality and unforgeability based on a random oracle model. Moreover, the efficiency of the proposed approach is evaluated and compared with Type-2 and Type-4 pairings.

telecommunications

TONG Xiaojun,JIANG Wei,SONG Xinfang,CUI Minggen

DOI: https://doi.org/10.3969/j.issn.1000-3428.2007.10.051

2007-01-01

Abstract:This paper systematically describes the elliptic curve digital signature algorithm(ECDSA) published by ANSI in 1999,and presents an improved digital signature scheme based on elliptic curve cryptosystem.It shortens the time for digital signature,and accelerates the speed of the operation.A batch signature based on the improved elliptic curve digital signature algorithm is designed with binary tree batch signature.The scheme is able to sign many different messages simultaneously using almost the cost of one signature operation of the signer.The unrelated recipients can authenticate signed messages independently.The security of the scheme is the same as ECDSA.

Debiao He,Jianhua Chen

2013-01-01

The International Arab Journal of Information Technology

Abstract:To solve the key escrow problem in identity-based cryptosystem, Al-Riyami et al. introduced the CertificateLess Public Key Cryptography (CL-PKC). As an important cryptographic primitive, CertificateLess Designated Verifier Signature (CLDVS) scheme was studied widely. Following Al-Riyami et al. work, many certificateless Designated Verifier Signature (DVS) schemes using bilinear pairings have been proposed. But the relative computation cost of the pairing is approximately twenty times higher than that of the scalar multiplication over elliptic curve group. In order to improve the performance we propose a certificateless DVS scheme without bilinear pairings. With the running time of the signature being saved greatly, our scheme is more practical than the previous related schemes for practical application.

吕皖丽,钟诚

DOI: https://doi.org/10.3969/j.issn.1000-3428.2004.05.046

2004-01-01

Abstract:The existed ECDSA scheme does not fit for multisignature. This paper first improves the ECDSA scheme, and presents a digital signature approach based on the difficulty of solving the elliptic curve discrete logarithm problem (ECDLP). Moreover, the paper presents a multisignature scheme also based on the difficulty of solving the ECDLP. The analysis shows that the two schemes are correctness and robust.

Li Hang,Yue Lihua,Shan Laixiang

DOI: https://doi.org/10.3969/j.issn.1000-386X.2007.03.002

2007-01-01

Abstract:Proxy signature schemes allow a proxy signer to generate a proxy signature on behalf of an original signer.There are many application of proxy signature in electronic commerce.This paper presents the proxy signature scheme based on Elliptic Curve Digital Signature Algorithm.This scheme possesses the following characters:high security class,less length of key,the less requirement of storage space,less bandwith requirement.So the scheme leads to a wide application perspective in secure communication in network especially in limit environments like wireless network and mobile device.

张龙军,邹涛,沈钧毅

2001-01-01

Abstract:The elliptic curve cryptosystem is far and wide used to encryptinformation and construct digital signature scheme by its speciality. Also it can be used to construct blind digital signature scheme. This paper proposes a new blind digital signature scheme based on the elliptic curve cryptosystem. The safety of this scheme is based on the elliptic curve discrete logarithm of non-supersingular elliptic curve over finite field which has no efficient attack method by now. The new scheme is secure in theory and is suitable for some practice.

Xiaofeng Chen,Willy Susilo,Jin Li,Duncan S. Wong,Jianfeng Ma,Shaohua Tang,Qiang Tang

DOI: https://doi.org/10.1016/j.tcs.2014.09.038

IF: 1.002

2015-01-01

Theoretical Computer Science

Abstract:The computation of bilinear pairings has been considered the most expensive operation in pairing-based cryptographic protocols. In this paper, we first propose an efficient and secure outsourcing algorithm for bilinear pairings in the two untrusted program model. Compared with the state-of-the-art algorithm, a distinguishing property of our proposed algorithm is that the (resource-constrained) outsourcer is not required to perform any expensive operations, such as point multiplications or exponentiations. Furthermore, we utilize this algorithm as a subroutine to achieve outsource-secure identity-based encryptions and signatures.

Duo Liu,Ping Luo,Yi-Qi Dai

DOI: https://doi.org/10.1007/s11390-007-9005-y

2007-01-01

Abstract:The concept of multisignature, in which multiple signers can cooperate to sign the same message and any verifier can verify the validity of the multi-signature, was first introduced by Itakura and Nakamura. Several multisignature schemes have been proposed since. Chen et al. proposed a new digital multi-signature scheme based on the elliptic curve cryptosystem recently. In this paper, we show that their scheme is insecure, for it is vulnerable to the so-called active attacks, such as the substitution of a “false” public key to a “true” one in a key directory or during transmission. And then the attacker can sign a legal signature which other users have signed and forge a signature himself which can be accepted by the verifier.