Journal of Beijing University of Posts and Telecommunications

  • EI核心期刊

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2013, Vol. 36 ›› Issue (6): 98-101.doi: 10.13190/j.jbupt.2013.06.021

• Reports • Previous Articles     Next Articles

Cryptanalysis and Improvement of Certificate-Based Signature Scheme

ZHOU Cai-xue   

  1. School of Information Science and Technology, University of Jiujiang, Jiangxi Jiujiang 332005, China
  • Received:2013-02-26 Online:2013-12-31 Published:2013-10-08

Abstract:

Certificate-based cryptosystem combines the merits of public key infrastructure (PKI)-based cryptosystem and identity-based cryptosystem, which can not only simplify the public key management, but also avoid the key escrow problem. A certificate-based signature scheme without pairing is analyzed, and shown to be forgeable by a type Ⅱ attacker. In the proof, there exists a security flaw, which is improved by means of binding random number to hash function. The improved scheme is proven to be unforgeable in the strongest security model of certificate-based signature scheme under discrete logarithm assumption. Without any time-consuming bilinear pairing operations, it shows efficient and applicable to power-constrained devices, such as wireless sensor networks.

Key words: certificate-based signature, random oracle model, bilinear pairings, discrete logarithm assumption, public key replacement

CLC Number: