Title :
Cryptanalysis and Improvements of Two Certificateless Signature Schemes with Additional Properties
Author :
Nong, Qiang ; Hao, Yanhua
Author_Institution :
Dept. of Comput. Sci. & Eng., Zhangzhou Normal Univ., Zhangzhou, China
Abstract :
Certificateless public key cryptography is a recently proposed attractive paradigm which combines advantages of both certificate-based and ID-based public key cryptosystems as it avoids usage of certificates and does not suffer from key escrow. Since it was firstly introduced by Al-Ryiami and Pater-son in Asiacrypt 2003, numerous certificateless encryption and signature schemes with additional properties have been proposed. In this paper, we present a security analysis of two such schemes: the Li et al.´s certificateless proxy signature scheme and the Ming et al.´s certificateless universal designated verifier signature scheme. Our results show that both schemes are insecure against public key replacement attack, which is one basic attack against a certificateless public key scheme. In this attack, an adversary can forge a valid signature on any message by replacing the public key of the signer. Finally, we give the corresponding improved measure respectively which can resolve the security problems existing in the original schemes.
Keywords :
digital signatures; public key cryptography; ID-based public key cryptosystems; certificateless public key cryptography; certificateless signature schemes; cryptanalysis; public key replacement attack; security analysis; Computer science; Design engineering; Distributed computing; Grid computing; Identity-based encryption; Mobile agents; Public key; Public key cryptography; Security; Voltage control; Certificateless signature; proxy signature; public key replacement attack; universal designated verifier signature;
Conference_Titel :
Computer Science and Computational Technology, 2008. ISCSCT '08. International Symposium on
Conference_Location :
Shanghai
Print_ISBN :
978-1-4244-3746-7
DOI :
10.1109/ISCSCT.2008.46
