Presentation is loading. Please wait.

Presentation is loading. Please wait.

A new provably secure certificateless short signature scheme Authors: K.Y. Choi, J.H. Park, D.H. Lee Source: Comput. Math. Appl. (IF:1.472) Vol. 61, 2011,

Published byAlexia Black Modified over 8 years ago

Similar presentations

Presentation on theme: "A new provably secure certificateless short signature scheme Authors: K.Y. Choi, J.H. Park, D.H. Lee Source: Comput. Math. Appl. (IF:1.472) Vol. 61, 2011,"— Presentation transcript:

1 A new provably secure certificateless short signature scheme Authors: K.Y. Choi, J.H. Park, D.H. Lee Source: Comput. Math. Appl. (IF:1.472) Vol. 61, 2011, pp. 1760-1768 Presenter: Yu-Chi Chen

2 Outline Introduction Certificateless signatures Shim’s attack The improved scheme Conclusions

3 Introduction Identity-based cryptography – Without CA to manage certificates of public keys. – Private key generator (PKG) knows everyone’s full private key as known as the key escrow problem. Certificateless cryptography – Solving the key escrow problem – Key generation center (KGC) cannot has everyone’s full private key

4 Certificateless signatures A CLS scheme usually constitutes the following algorithms. – Setup – Partial private key extract – Set public key – Set secret value – Sign – Verify

5 Security model Two types adversaries - Existential Unforgeability – Type 1 adversary: An outsider Can replace public key Cannot access the system master key – Type 2 adversary: The KGC Cannot replace public key Can access the system master key

6 Type 1 adversary Setup. Attack. – Partial-private-key queries – Public key queries – Secret value queries – Public key replacement – Sign queries Forgery. A forged signature of Win the game if the conditions hold. – The forged signature is valid. – The partial-private-key and the forged signature have never been queried. – The public key has never been replaced.

7 Type 2 adversary Setup. Attack. – Partial-private-key queries – Public key queries – Secret value queries – Public key replacement – Sign queries Forgery. A forged signature of Win the game if the conditions hold. – The forged signature is valid. – The secret value and the forged signature have never been queried.

8 Remark on security models Several different security models have been presented. In particular, Huang et al. classify different levels of adversaries according to their abilities. – Normal Type 1 adversary – Strong Type 1 adversary – Super Type 1 adversary – …

9 Outline Introduction Certificateless signatures Shim’s attack The improved scheme Conclusions

10 Shim’s attack 1.An adversary (Type 1), A, first sets a secret value of ID, r *, and then he computes the corresponding public key pk *. 2.He replaces the public key of ID with pk *. 3.He queries a signature of (M, ID, pk * ). 4.Finally, he can recover the partial-private-key by the signature of (M, ID, pk * ) and the secret value r *.

11 Outline Introduction Certificateless signatures Shim’s attack The improved scheme Conclusions

12 The proposed scheme Setup – Bilinear map: with order q, and P is the generator of G 1. – Master key: – Master public key: – Hash functions:

13 The proposed scheme Partial-private-key-extract. – User A with ID A can obtain the partial-private-key Set secret value. – User A with ID A chooses as his secret value. Set public key. – His public key

14 Sign. input: 1.Set 2.Compute 3.Return σ as the signature of m. Verify. 1.Compute 2.Check

15 Security analysis Our short certificateless signature scheme is existentially unforgeable against a super Type I adversary in random oracle model under the CDH assumption. Our short certificateless signature scheme is existentially unforgeable against a super Type II adversary in random oracle model under the CDH assumption.

16 Outline Introduction Certificateless signatures Shim’s attack The improved scheme Conclusions

17 Choi et al. introduces an improved scheme withstand Shim’s attack. The major inspiration is the two components of partial-private-key. This scheme is existentially unforgeable under the CDH assumption respectively against super Type I and II adversaries.

Download ppt "A new provably secure certificateless short signature scheme Authors: K.Y. Choi, J.H. Park, D.H. Lee Source: Comput. Math. Appl. (IF:1.472) Vol. 61, 2011,"

Similar presentations

1 9 4 5 1 8 8 6 E W H A W U New Nominative Proxy Signature Scheme for Mobile Communication April. 30. 2003 Seo, Seung-Hyun Dept. of Computer Science and.

E W H A W U New Nominative Proxy Signature Scheme for Mobile Communication April Seo, Seung-Hyun Dept. of Computer Science and.
Secure Multiparty Computations on Bitcoin

Secure Multiparty Computations on Bitcoin
BY JYH-HAW YEH COMPUTER SCIENCE DEPT. BOISE STATE UNIVERSITY Proxy Credential Forgery Attack to Two Proxy Signcryption Schemes.

BY JYH-HAW YEH COMPUTER SCIENCE DEPT. BOISE STATE UNIVERSITY Proxy Credential Forgery Attack to Two Proxy Signcryption Schemes.
11 Efficient and Secure Certificateless Authentication and Key Agreement Protocol for Hybrid P2P Network Authors: Z. B. Xu and Z. W. Li Source: The 2nd.

11 Efficient and Secure Certificateless Authentication and Key Agreement Protocol for Hybrid P2P Network Authors: Z. B. Xu and Z. W. Li Source: The 2nd.
Hybrid Signcryption with Insider Security Alexander W. Dent.

Hybrid Signcryption with Insider Security Alexander W. Dent.
IAW 2006 Cascaded Authorization with Anonymous- Signer Aggregate Signatures Danfeng Yao Department of Computer Science Brown University Joint work with.

IAW 2006 Cascaded Authorization with Anonymous- Signer Aggregate Signatures Danfeng Yao Department of Computer Science Brown University Joint work with.
A novel and efficient unlinkable secret handshakes scheme Author: Hai Huang and Zhenfu Cao (PR China) Source: IEEE Comm. Letters 13 (5) (2009) Presenter:

A novel and efficient unlinkable secret handshakes scheme Author: Hai Huang and Zhenfu Cao (PR China) Source: IEEE Comm. Letters 13 (5) (2009) Presenter:
1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.

1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.
Efficient deniable authentication protocol based on generalized ElGamal signature scheme From ELSEVIER Computer Standards & Interface Author: Zuhua Shao.

Efficient deniable authentication protocol based on generalized ElGamal signature scheme From ELSEVIER Computer Standards & Interface Author: Zuhua Shao.
Certificateless encryption and its infrastructures Dr. Alexander W. Dent Information Security Group Royal Holloway, University of London.

Certificateless encryption and its infrastructures Dr. Alexander W. Dent Information Security Group Royal Holloway, University of London.
CMSC 414 Computer and Network Security Lecture 7 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 7 Jonathan Katz.
Identity Based Encryption

Identity Based Encryption
Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.

Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.
Weakness of Shim’s New ID- base Tripartite Multiple-key Agreement Protocol Authors: J.S. Chou, C.H.Lin and C.H. Chiu ePrint/2005/457 Presented by J. Liu.

Weakness of Shim’s New ID- base Tripartite Multiple-key Agreement Protocol Authors: J.S. Chou, C.H.Lin and C.H. Chiu ePrint/2005/457 Presented by J. Liu.
1 Identity-Based Encryption form the Weil Pairing Author : Dan Boneh Matthew Franklin Presentered by Chia Jui Hsu Date : 2008-06-03.

1 Identity-Based Encryption form the Weil Pairing Author : Dan Boneh Matthew Franklin Presentered by Chia Jui Hsu Date :
CMSC 414 Computer and Network Security Lecture 9 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 9 Jonathan Katz.
Efficient fault-tolerant scheme based on the RSA system Author: N.-Y. Lee and W.-L. Tsai IEE Proceedings Presented by 詹益誌 2004/03/02.

Efficient fault-tolerant scheme based on the RSA system Author: N.-Y. Lee and W.-L. Tsai IEE Proceedings Presented by 詹益誌 2004/03/02.
Certificateless Authenticated Two-Party Key Agreement Protocols

Certificateless Authenticated Two-Party Key Agreement Protocols
Strongly Secure Certificateless Encryption Alexander W. Dent Information Security Group

Strongly Secure Certificateless Encryption Alexander W. Dent Information Security Group
Unlinkable Secret Handshakes and Key-Private Group Key Management Schemes Author: Stanislaw Jarecki and Xiaomin Liu University of California, Irvine From:

Unlinkable Secret Handshakes and Key-Private Group Key Management Schemes Author: Stanislaw Jarecki and Xiaomin Liu University of California, Irvine From:

Similar presentations

Ads by Google