XU Yan,HUANG Liu-sheng,TIAN Miao-miao,ZHONG Hong

DOI: https://doi.org/10.3969/j.issn.1000-436x.2014.11.014

2014-01-01

Abstract:Certificate less sequential multi-signature scheme could resolve the problem of authentication of recommendation information transmitted through trust train.Qin yan-lin，et al proposed an efficient certificateless sequential multi-signature scheme，and proved the security is based on the fact that computational Diffie-Hellman problem is hard in the random oracle.It is found that Qin's scheme is insecure against the forgery attack after analysing the security proof.If an adversary has obtained the signers’ multi-signature，it can forgery the multi-signature for any other message.Then，a more efficient certificateless sequential multi-signature scheme is construced which has lower computation cost and communication cost for using less bilinear pairings and only generating one signature message.Finally，the security proof shows that the proposed scheme can resist the forgery attack under the model of random oracle.

Duo Liu,Ping Luo,Yi-Qi Dai

DOI: https://doi.org/10.1007/s11390-007-9005-y

2007-01-01

Abstract:The concept of multisignature, in which multiple signers can cooperate to sign the same message and any verifier can verify the validity of the multi-signature, was first introduced by Itakura and Nakamura. Several multisignature schemes have been proposed since. Chen et al. proposed a new digital multi-signature scheme based on the elliptic curve cryptosystem recently. In this paper, we show that their scheme is insecure, for it is vulnerable to the so-called active attacks, such as the substitution of a “false” public key to a “true” one in a key directory or during transmission. And then the attacker can sign a legal signature which other users have signed and forge a signature himself which can be accepted by the verifier.

Hongwei Chu,Yinliang Zhao

DOI: https://doi.org/10.1109/iscid.2008.204

2008-01-01

Abstract:Based on Schnorr algorithm, by adopting ID code and time-limit approaches, propose two multisignature schemes which can prevent repeated broadcast attack and malicious delay in the process. For most of the computational effort for signature generation can be done in preprocessing stage, both identification and signature with high efficiency, and it's security is based on the difficulty of discrete logarithms problem. In the end, analyze the two schemes' security and efficiency in detail.

Jie XU,Hong-xiang SUN,Qiao-yan WEN,Hua ZHANG

DOI: https://doi.org/10.1016/s1005-8885(11)60288-4

2012-01-01

The Journal of China Universities of Posts and Telecommunications

Abstract:Multi-proxy signature is a scheme that an original signer delegates his or her signing capability to a proxy group. In the scheme, only the cooperation of all proxy signers in the proxy group can create a signature on behalf of the original signer. Jin and Wen firstly defined the formal security model of certificateless multi-proxy signature (CLMPS) and proposed a concrete CLMPS scheme. However, their construction has three problems: the definition of the strengthened security model is inaccurate, the concrete signature scheme has a security flaw, and the proof of the security is imperfect. With further consideration, a remedial strengthened security model is redefined, and an improved scheme is also proposed, which is existentially unforgeable against adaptively chosen-warrant, chosen-message and chosen-identity attacks in the random oracles. In this condition, the computational Diffie-Hellman (CDH) assumption is used to prove full security for our CLMPS scheme.

Mengqi Feng,Chao Lin,Wei Wu,Debiao He

DOI: https://doi.org/10.1016/j.csi.2023.103763

IF: 3.721

2024-01-01

Computer Standards & Interfaces

Abstract:As an equivalent of a handwritten signature, digital signature can resist against information tampering and identity impersonation during digital communication, but it fails to meet the specific anonymity requirement in circumstances like voting, credit reporting, and whistle-blowing. Ring signature was introduced as a special digital signature to further achieve anonymity, and classical schemes constructed from single ring were faced with linearly increasing size. In CRYPTO 2021, Yuen et al. proposed a novel construction paradigm (namely, DualRing) for reaping logarithmic-sized ring signature. Existing DualRing-based ring signature schemes are based on its supported Type-T standard signature algorithms (Three-move type, e.g. Schnorr signature). In this paper, we are motivated to seek a SM2-based ring signature scheme upon the DualRing technology, among which the SM2 digital signature is widely adopted as an international standard but not with a Type-T architecture. Therefore, we first transform the SM2 digital signature into Type-T and integrate DualRing with the variant of the SM2 digital signature. After that, we prove the unforgeability and anonymity of our schemes, together with proposing optimized and linkable schemes. Finally, we put our schemes into practice to display their performance in communication and computation costs.

computer science, software engineering, hardware & architecture

Yu Yong,Sun Ying,Yang Bog,Xu Chunxiang,Liu Shuanggen

IF: 1.019

2008-01-01

Chinese Journal of Electronics

Abstract:In a multi-proxy signature scheme, an original signer delegates his or her signing capability to a group of proxy signers, in such a way that only the cooperation of all the proxy signers can generate a valid proxy signature on behalf of the original signer. Several multi-proxy signature schemes have been proposed so far. However, these works either only provide informal security analysis, or provide a security proof in the random oracle model, which has received a lot of criticism that the proofs in the random oracle model are not proofs. In this paper, we propose a new construction of multi-proxy signature that can be proven secure without using the random oracles. As for the security, we divide the potential adversaries into three kinds according to their attack power, and prove that the proposed scheme is unforgeable against all kinds of adversaries, assuming the Computational Diffie-Hellman problem is intractable. Furthermore, the new scheme has the property that the size of a multi-proxy signature is independent on the number of the proxy signers. As far as we know, this is the first multi-proxy signature scheme that can be proven secure in the standard model.

Yang Muxiang,Su Li,Li Jun,Hong Fan

DOI: https://doi.org/10.1007/bf02831833

2006-01-01

Wuhan University Journal of Natural Sciences

Abstract:In multisignature schemes signers can sign either in a linear order or not in any specified order, but neither of them is adequate in some scenarios where require mixture using of orderless and ordered multisignature. Most order-specified multisignatures specified the orders as linear ones. In this paper, we proposed an order-specified multisignature scheme based on DSA secure against active insider attack. To our knowledge, it is the first order-specified multisignature shceme based on DSA signature scheme, in which signers can sign in flexible order represented by series-parallel graphs. In the multisignature scheme verification to both signers and signing order are available. The security of the scheme is proved by reduce to an identification scheme that is proved have some concrete security. The running time of verifying a signature is comparable to previous schemes while the running time of multisignature generation and the space needed is less than those schemes.

Muxiang Yang,Jun Li,Fan Hong,Li Su

DOI: https://doi.org/10.1109/iccias.2006.295262

2006-01-01

Abstract:Threshold signature schemes are useful in MANET because of the mobility and weak connectivity. Meanwhile, order-specified multi-signature schemes are valuable in some multi-level security systems. To meet such kind of requirements, we proposed a secure threshold order-specified multi-signature scheme based on RSA in this paper. The scheme is designed based on a modified threshold RSA signature scheme and an order-specified. It has a certain extent exact security. Proof is given in the random oracle model and the computational and spatial complexity are presented at the end.

Tianjie Cao,Dongdai Lin

DOI: https://doi.org/10.1007/11599548_20

2005-01-01

Abstract:Digital signature scheme allows a user to sign a message in such a way that anyone can verify the signature, but no one can forge the signature on any other message. In this paper, we show that Xie and Yu’s threshold signature scheme, Huang and Chang’s threshold proxy signature scheme, Qian, Cao and Xue’s pairing-based threshold proxy signature scheme, Xue and Cao’s multi-proxy signature scheme and Zhou et al.’s proxy multi-signature scheme are all insecure against the forgery attacks.

XIA Qi,XU Chun-xiang

2009-01-01

Abstract:The security of Yang et al. verifiably encrypted signature schemes is analyzed.Although the scheme is proved security in the standard model,it is vulnerable to key substitution attack in a multi-user setting,where an adversary can generate new keys satisfying legitimate verifiably encrypted signatures created by the legitimate users.A concrete instance of fair exchange of digital signature protocol is given to show that this kind attack can breach the fairness when they are used in fair exchange in a multi-user setting.

Xiao Zhang,Shengli Liu,Dawu Gu,Joseph K. Liu

DOI: https://doi.org/10.1016/j.tcs.2018.12.012

IF: 1.002

2019-01-01

Theoretical Computer Science

Abstract:In this paper, we present a generic construction of tightly secure signature schemes in the multi-user setting, which is in turn used to construct tightly secure identity-based signature schemes. Both of the securities of the constructions are based on the hardness of some subset membership problems (SMP). By instantiating SMP with the Decisional Composite Residuosity (DCR) and Matrix Decisional Diffie–Hellman (MDDH) problems, we obtain tightly secure signature schemes and tightly secure identity-based signatures based on the DCR and MDDH assumptions, respectively.

Senshan Ouyang,Xiang Liu,Lei Liu,Shangchao Wang,Baichuan Shao,Yang Zhao

DOI: https://doi.org/10.32604/cmes.2023.028895

2024-01-01

Computer Modeling in Engineering & Sciences

Abstract:With the continuous expansion of the Industrial Internet of Things (IIoT), more and more organisations are placing large amounts of data in the cloud to reduce overheads. However, the channel between cloud servers and smart equipment is not trustworthy, so the issue of data authenticity needs to be addressed. The SM2 digital signature algorithm can provide an authentication mechanism for data to solve such problems. Unfortunately, it still suffers from the problem of key exposure. In order to address this concern, this study first introduces a key-insulated scheme, SM2-KI-SIGN, based on the SM2 algorithm. This scheme boasts strong key insulation and secure key-updates. Our scheme uses the elliptic curve algorithm, which is not only more efficient but also more suitable for IIoT-cloud environments. Finally, the security proof of SM2-KI-SIGN is given under the Elliptic Curve Discrete Logarithm (ECDL) assumption in the random oracle.

engineering, multidisciplinary,mathematics, interdisciplinary applications

J Pieprzyk,HX Wang,CP Xing

DOI: https://doi.org/10.1007/978-3-540-24654-1_7

2004-01-01

Abstract:Multiple-time signatures are digital signature schemes where the signer is able to sign a predetermined number of messages. They are interesting cryptographic primitives because they allow to solve many important cryptographic problems, and at the same time offer substantial efficiency advantage over ordinary digital signature schemes like RSA. Multiple-time signature schemes have found numerous applications, in ordinary, on-line/off-line, forward-secure signatures, and multicast/stream authentication. We propose a multiple-time signature scheme with very efficient signing and verifying. Our construction is based on a combination of one-way functions and cover-free families, and it is secure against the adaptive chosen-message attack.

Miaomiao Tian,Liusheng Huang,Wei Yang

DOI: https://doi.org/10.1504/IJESDF.2014.064409

2014-01-01

International Journal of Electronic Security and Digital Forensics

Abstract:Certificateless cryptography is an attractive paradigm for public key cryptography since it does not require certificates in traditional public key cryptography and also solves the inherent key escrow problem in identity-based cryptography. Currently, certificateless short signature is receiving significant attention from the public key cryptography research community as it is particularly useful in low-bandwidth communication environments. However, most of the certificateless short signature schemes only support low-level security. Recently, Choi et al. presented a certificateless short signature scheme and claimed that it is provably secure against super adversaries in the random oracle model. Unfortunately, in this paper, we show that their scheme is insecure even against a strong adversary. We then propose a new certificateless short signature scheme and prove that it is secure against strong adversaries. Compared with other certificateless short signature schemes, our scheme is more computationally efficient.

Liu Xiaochuan,Chen Enhong

DOI: https://doi.org/10.3969/j.issn.1000-386X.2010.08.092

2010-01-01

Abstract:Based on elliptic curve digital signature function,a structured multi-signature scheme with the combination of sequential and broadcasting algorithms is proposed in this paper.At the same time,we also analyze the security of the scheme.The scheme is more flexible than others and can be adapted to various complex multi-signature structures.It can also satisfy with the safety properties required by the digital signature including non-forgeability,non-repudiation,forward-secure,anti-collusion attacks,replay attack prevention and forward security,etc.

WANG Yong,ZHU Yan-qin

DOI: https://doi.org/10.1007/0-387-34805-0_23

2011-01-01

Abstract:This paper presents a signature with shared verification scheme based on verifiable multi-secret sharing.The scheme effecitively overcomes the deficiencies of the previous schemes in terms of security.In the process of signature verification,validation group can prevent some members providing the faulted information.This can make verification failure.Because the scheme uses verifiable multi-secret sharing,it can verify many signatures when it makes once multi-secret sharing.It has higher efficiency compared with the previous schemes.

Ying Sun,Chunxiang Xu,Yong Yu,Bo Yang

DOI: https://doi.org/10.1016/j.comcom.2010.02.002

IF: 5.047

2010-01-01

Computer Communications

Abstract:A proxy multi-signature scheme permits two or more original singers to delegate their signing powers to the same proxy signer. Recently, Liu et al. proposed the first proxy multi-signature that be proven secure in the standard model [Liu et al. (2008) [20]], which can be viewed as a two-level hierarchical signature due to Waters. However, because of the direct employment of Waters’ signature, their scheme needs a relatively large number of public parameters and is not tightly reduced to the security assumption. In this paper, inspired by Boneh, Boyen’s technique and Waters’ technique, we propose a new proxy multi-signature scheme without random oracles, whose unforgeability can be tightly reduced to the CDH assumption in bilinear groups. The new scheme can be regarded as an improvement to overcome the weaknesses of Liu et al.’s scheme. Compared with Liu et al.’s scheme, the improvement has three merits, tighter security reduction, shorter system parameters and higher efficiency.

Huiqiang Liang,Jianhua Chen

DOI: https://doi.org/10.1007/s11704-022-2288-x

IF: 2.6688

2024-01-01

Frontiers of Computer Science

Abstract:A threshold signature is a special digital signature in which the N-signer share the private key x and can construct a valid signature for any subset of the included t-signer, but less than t-signer cannot obtain any information. Considering the breakthrough achievements of threshold ECDSA signature and threshold Schnorr signature, the existing threshold SM2 signature is still limited to two parties or based on the honest majority setting, there is no more effective solution for the multiparty case. To make the SM2 signature have more flexible application scenarios, promote the application of the SM2 signature scheme in the blockchain system and secure cryptocurrency wallets. This paper designs a non-interactive threshold SM2 signature scheme based on partially homomorphic encryption and zero-knowledge proof. Only the last round requires the message input, so make our scheme non-interactive, and the pre-signing process takes 2 rounds of communication to complete after the key generation. We allow arbitrary threshold t≤n and design a key update strategy. It can achieve security with identifiable abort under the malicious majority, which means that if the signature process fails, we can find the failed party. Performance analysis shows that the computation and communication costs of the pre-signing process grows linearly with the parties, and it is only 1/3 of the Canetti’s threshold ECDSA (CCS'20).

Fagen Li,Shijie Zhou,Rong Sun

DOI: https://doi.org/10.1093/ietfec/e91-a.7.1820

2008-01-01

Abstract:In a proxy multi-signature scheme, a designated proxy signer can generate the signature on behalf of a group of original signers. Recently, Wang and Cao proposed an identity based proxy multi-signature scheme along with a security model. Although they proved that their scheme is secure under this model, we disprove their claim and show that their scheme is not secure.

Liangliang Wang,Mi Wen,Kefei Chen,Zhongqin Bi,Yu Long

DOI: https://doi.org/10.1007/978-3-319-69471-9_19

2017-01-01

Abstract:Through the application of certificateless signature, certificate management in traditional signatures can be simplified. Furthermore, the key escrow problem in identity-based signatures can be solved as well. As history has shown, there has not been a general pairing-free certificateless signature scheme which is mainly designed with modular exponentiation and modular multiplication that can possess resistance to Type I and Type II adversaries so far. Therefore, a new hard mathematic problem is firstly defined in this paper, which is called variant of RSA problem. In the next step, a new general pairing-free certificateless signature scheme is proposed based on the newly defined variant of RSA problem and the well known discrete logarithm problem. Fortunately, the proposed scheme is also the first RSA-based certificateless signature scheme that can possess resistance to Type I and Type II adversaries. In addition, a formal security proof is provided to demonstrate that, under adaptively chosen message attacks, the proposed scheme is provably secure against Type I and Type II adversaries in the random oracle model. When compared with other known pairing-free certificateless signature schemes of the same type, the computation cost of our scheme is slightly higher, however, a higher security level can be achieved.