Security Pitfalls of the Certificateless Signature and Multi-Receiver Signcryption Schemes

Authors:
Kyung-Ah Shim;Young-Ran Lee
Affiliations:
(Correspd.) Division of Fusion and Convergence of Mathematical Sciences, National Institute for Mathematical Sciences, KT Daeduk 2 Research Center 463-1 Yuseong-gu, Daegeon, Korea. {kashim, yrlee} ...;Division of Fusion and Convergence of Mathematical Sciences, National Institute for Mathematical Sciences, KT Daeduk 2 Research Center 463-1 Yuseong-gu, Daegeon, Korea. {kashim, yrlee}@nims.re.kr
Venue:
Fundamenta Informaticae
Year:
2011

Citing 17
Cited 0

Identity-based cryptosystems and signature schemes

Proceedings of CRYPTO 84 on Advances in cryptology
Digital Signcryption or How to Achieve Cost(Signature & Encryption)

CRYPTO '97 Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology
Self-Generated-Certificate Public Key Cryptography and certificateless signature/encryption scheme in the standard model: extended abstract

ASIACCS '07 Proceedings of the 2nd ACM symposium on Information, computer and communications security
Malicious KGC attacks in certificateless cryptography

ASIACCS '07 Proceedings of the 2nd ACM symposium on Information, computer and communications security
Certificateless signcryption

Proceedings of the 2008 ACM symposium on Information, computer and communications security
Efficient Certificateless Signature Schemes

ACNS '07 Proceedings of the 5th international conference on Applied Cryptography and Network Security
Efficient and Provably Secure Certificateless Multi-receiver Signcryption

ProvSec '08 Proceedings of the 2nd International Conference on Provable Security
An Improved Certificateless Signature Scheme Secure in the Standard Model

Fundamenta Informaticae
Public-key encryption in a multi-user setting: security proofs and improvements

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques
Certificateless encryption schemes strongly secure in the standard model

PKC'08 Proceedings of the Practice and theory in public key cryptography, 11th international conference on Public key cryptography
On the security of certificateless signature schemes from asiacrypt 2003

CANS'05 Proceedings of the 4th international conference on Cryptology and Network Security
Certificateless public key encryption without pairing

ISC'05 Proceedings of the 8th international conference on Information Security
On constructing certificateless cryptosystems from identity based encryption

PKC'06 Proceedings of the 9th international conference on Theory and Practice of Public-Key Cryptography
Certificateless public-key signature: security model and efficient construction

ACNS'06 Proceedings of the 4th international conference on Applied Cryptography and Network Security
Efficient and provably secure multi-receiver identity-based signcryption

ACISP'06 Proceedings of the 11th Australasian conference on Information Security and Privacy
Efficient identity-based signatures secure in the standard model

ACISP'06 Proceedings of the 11th Australasian conference on Information Security and Privacy
Key replacement attack against a generic construction of certificateless signature

ACISP'06 Proceedings of the 11th Australasian conference on Information Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

Recently, Xiong et al. and Selvi et al. proposed a certificateless signature scheme secure in the standard model and a certificateless multi-receiver signcryption scheme secure in the random oracle model, respectively. In this paper, we show that they are insecure against malicious-butpassive KGC attacks. More specifically, the former does not achieve unforgeability and the latter does not satisfy confidentiality against type II adversaries.