Certificate-based signature: security model and efficient construction

Authors:
Jiguo Li;Xinyi Huang;Yi Mu;Willy Susilo;Qianhong Wu
Affiliations:
College of Computer and Information Engineering, Hohai University, Nanjing, P. R. China;Centre for Computer and Information Security Research, School of Computer Science & Software Engineering, University of Wollongong, Australia;Centre for Computer and Information Security Research, School of Computer Science & Software Engineering, University of Wollongong, Australia;Centre for Computer and Information Security Research, School of Computer Science & Software Engineering, University of Wollongong, Australia;Centre for Computer and Information Security Research, School of Computer Science & Software Engineering, University of Wollongong, Australia
Venue:
EuroPKI'07 Proceedings of the 4th European conference on Public Key Infrastructure: theory and practice
Year:
2007

Citing 12
Cited 12

Identity-based cryptosystems and signature schemes

Proceedings of CRYPTO 84 on Advances in cryptology
PKI: It's Not Dead, Just Resting

Computer
Identity-Based Encryption from the Weil Pairing

CRYPTO '01 Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology
Revocation and Tracing Schemes for Stateless Receivers

CRYPTO '01 Proceedings of the 21st Annual International Cryptology Conference on Advances in Cryptology
Fast Digital Identity Revocation (Extended Abstract)

CRYPTO '98 Proceedings of the 18th Annual International Cryptology Conference on Advances in Cryptology
Certificate revocation and certificate update

SSYM'98 Proceedings of the 7th conference on USENIX Security Symposium - Volume 7
Certificate-based encryption and the certificate revocation problem

EUROCRYPT'03 Proceedings of the 22nd international conference on Theory and applications of cryptographic techniques
Breaking yum and lee generic constructions of certificate-less and certificate-based encryption schemes

EuroPKI 2006 Proceedings of the Third European conference on Public Key Infrastructure: theory and Practice
On the security of certificateless signature schemes from asiacrypt 2003

CANS'05 Proceedings of the 4th international conference on Cryptology and Network Security
CBE from CL-PKE: a generic construction and efficient schemes

PKC'05 Proceedings of the 8th international conference on Theory and Practice in Public Key Cryptography
Chosen-ciphertext security of multiple encryption

TCC'05 Proceedings of the Second international conference on Theory of Cryptography
Key replacement attack against a generic construction of certificateless signature

ACISP'06 Proceedings of the 11th Australasian conference on Information Security and Privacy

Certificate-Based Signature Schemes without Pairings or Random Oracles

ISC '08 Proceedings of the 11th international conference on Information Security
Efficient Certificate-Based Encryption in the Standard Model

SCN '08 Proceedings of the 6th international conference on Security and Cryptography for Networks
Certificate-based sequential aggregate signature

Proceedings of the second ACM conference on Wireless network security
Certificate-Based Signatures: New Definitions and a Generic Construction from Certificateless Signatures

Information Security Applications
On the Security of a Certificate-Based Signature Scheme and Its Improvement with Pairings

ISPEC '09 Proceedings of the 5th International Conference on Information Security Practice and Experience
Constructions of certificate-based signature secure against key replacement attacks

Journal of Computer Security - The 2007 European PKI Workshop: Theory and Practice (EuroPKI'07)
Self-certified ring signatures

Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security
Short and efficient certificate-based signature

NETWORKING'11 Proceedings of the IFIP TC 6th international conference on Networking
An efficient short certificate-based signature scheme

Journal of Systems and Software
Certificate-based signcryption with enhanced security features

Computers & Mathematics with Applications
A forward-secure certificate-based signature scheme in the standard model

CSS'12 Proceedings of the 4th international conference on Cyberspace Safety and Security
Provably secure certificate-based signature scheme without pairings

Information Sciences: an International Journal

Quantified Score

Hi-index	0.00

Visualization

Abstract

In Eurocrypt 2003, Gentry introduced the notion of certificate-based encryption. The merit of certificate-based encryption lies in the following features: (1) providing more efficient public-key infrastructure (PKI) that requires less infrastructure, (2) solving the certificate revocation problem, and (3) eliminating third-party queries in the traditional PKI. In addition, it also solves the inherent key escrow problem in the identity-based cryptography. In this paper, we first introduce a new attack called the "Key Replacement Attack" in the certificatebased system and refine the security model of certificate-based signature. We show that the certificate-based signature scheme presented by Kang, Park and Hahn in CT-RSA 2004 is insecure against key replacement attacks. We then propose a new certificate-based signature scheme, which is shown to be existentially unforgeable against adaptive chosen message attacks under the computational Diffie-Hellman assumption in the random oracle model. Compared with the certificate-based signature scheme in CT-RSA 2004, our scheme enjoys shorter signature length and less operation cost, and hence, our scheme outperforms the existing schemes in the literature.