On the security of a digital signature with message recovery using self-certified public key

Authors:
Jianhong Zhang;Dan Chen;Yumin Wang
Affiliations:
College of science, North China University of Technology, Shijingshan, Beijing, P.R.China;State Key Lab. On ISN, Xidian University, Xi'an, Shaanxi, P.R.China;State Key Lab. On ISN, Xidian University, Xi'an, Shaanxi, P.R.China
Venue:
AMCOS'05 Proceedings of the 4th WSEAS International Conference on Applied Mathematics and Computer Science
Year:
2005

Citing 2
Cited 2

Identity-based cryptosystems and signature schemes

Proceedings of CRYPTO 84 on Advances in cryptology
A method for obtaining digital signatures and public-key cryptosystems

Communications of the ACM

A pairing-based signcryption scheme using self-certified public keys

International Journal of Computers and Applications
An improved digital signature with message recovery using self-certified public keys without trustworthy system authority

SOFSEM'06 Proceedings of the 32nd conference on Current Trends in Theory and Practice of Computer Science

Quantified Score

Hi-index	0.00

Visualization

Abstract

Self-certified public keys are proposed to eliminate the burden of verifying the public key before using. To alleviate reliance on system authority and strengthen the security of system, Chang et al propose a new digital signature schemes, no redundancy is needed to be embedded in the signed messages in this scheme. Moreover, Chang et al claimed that the schemes are still secure even without the trustworthy system authority, and only the specified recipient can recover the message in his authentication encryption schemes. Unfortunately, In this work, we analyze the security of Chang et al scheme and show that if the system authority is trustless, the scheme is insecure, namely, the system authority can recover the message without the private key of the recipient in Chang' authentication encryption schemes. Finally, we propose an improve scheme to overcome the weakness of Chang et al scheme.