Anti malicious KGC certificateless signature scheme based on blockchain and domestic cryptographic SM9
The certificateless cryptosystem can solve the problems of certificate management and key escrow at the same time, but its security model always assumes that Type II adversary (named malicious KGC) will not launch public key replacement attacks.This security assumption has certain limitations in rea...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
POSTS&TELECOM PRESS Co., LTD
2022-12-01
|
| Series: | 网络与信息安全学报 |
| Subjects: | |
| Online Access: | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2022073 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841529739642142720 |
|---|---|
| author | Fei TANG Ning GAN Xianggui YANG Jinyang WANG |
| author_facet | Fei TANG Ning GAN Xianggui YANG Jinyang WANG |
| author_sort | Fei TANG |
| collection | DOAJ |
| description | The certificateless cryptosystem can solve the problems of certificate management and key escrow at the same time, but its security model always assumes that Type II adversary (named malicious KGC) will not launch public key replacement attacks.This security assumption has certain limitations in real-world applications.As an efficient identity-based cryptographic scheme, SM9 signature scheme adopts R-ate bilinear pairing which has good security and high computational efficiency.However, it requires KGC to generate and manage keys for users, so it has the problem of key escrow.In view of the above problems, a certificateless signature scheme against malicious KGC was constructed based on blockchain and SM9 signature algorithm.Based on the properties of decentralization and tamper-proof of blockchain, the proposed scheme used the smart contract to record part of the public key corresponding to the user’s secret value on the blockchain.Then, the verifier can revoke the smart contract to query the user’s public key during the signature verification stage.Therefore, the proposed scheme ensured the authenticity of the user’s public key.The user’s private key consisted of the partial private key generated by KGC and a secret randomly chosen by the user.The user required the partial private key generated by KGC to endorse his identity identifier when the user generates the private key for the first time.Subsequently, the private key can be independently updated by changing the secret and the corresponding partial public key.During this process, the identity remains unchanged, which provided a viable solution for key management in decentralized application scenarios.The blockchain relied on the consensus mechanism to ensure the consistency of the distributed data.Based on the traceability of the blockchain, the change log of user’s partial public key was stored in the blockchain, which can trace the source of malicious public key replacement attacks and thereby prevent malicious KGC from launching public key replacement attacks.According to the experimental simulation and security proof results, the total overhead of signature and verification of the proposed scheme is only 7.4ms.Compared with similar certificateless signature schemes, the proposed scheme can effectively resist public key replacement attacks and has higher computational efficiency. |
| format | Article |
| id | doaj-art-c6fb4fab8c2a4ec19b33b252e3aa460b |
| institution | Kabale University |
| issn | 2096-109X |
| language | English |
| publishDate | 2022-12-01 |
| publisher | POSTS&TELECOM PRESS Co., LTD |
| record_format | Article |
| series | 网络与信息安全学报 |
| spelling | doaj-art-c6fb4fab8c2a4ec19b33b252e3aa460b2025-01-15T03:16:02ZengPOSTS&TELECOM PRESS Co., LTD网络与信息安全学报2096-109X2022-12-01891959574176Anti malicious KGC certificateless signature scheme based on blockchain and domestic cryptographic SM9Fei TANGNing GANXianggui YANGJinyang WANGThe certificateless cryptosystem can solve the problems of certificate management and key escrow at the same time, but its security model always assumes that Type II adversary (named malicious KGC) will not launch public key replacement attacks.This security assumption has certain limitations in real-world applications.As an efficient identity-based cryptographic scheme, SM9 signature scheme adopts R-ate bilinear pairing which has good security and high computational efficiency.However, it requires KGC to generate and manage keys for users, so it has the problem of key escrow.In view of the above problems, a certificateless signature scheme against malicious KGC was constructed based on blockchain and SM9 signature algorithm.Based on the properties of decentralization and tamper-proof of blockchain, the proposed scheme used the smart contract to record part of the public key corresponding to the user’s secret value on the blockchain.Then, the verifier can revoke the smart contract to query the user’s public key during the signature verification stage.Therefore, the proposed scheme ensured the authenticity of the user’s public key.The user’s private key consisted of the partial private key generated by KGC and a secret randomly chosen by the user.The user required the partial private key generated by KGC to endorse his identity identifier when the user generates the private key for the first time.Subsequently, the private key can be independently updated by changing the secret and the corresponding partial public key.During this process, the identity remains unchanged, which provided a viable solution for key management in decentralized application scenarios.The blockchain relied on the consensus mechanism to ensure the consistency of the distributed data.Based on the traceability of the blockchain, the change log of user’s partial public key was stored in the blockchain, which can trace the source of malicious public key replacement attacks and thereby prevent malicious KGC from launching public key replacement attacks.According to the experimental simulation and security proof results, the total overhead of signature and verification of the proposed scheme is only 7.4ms.Compared with similar certificateless signature schemes, the proposed scheme can effectively resist public key replacement attacks and has higher computational efficiency.http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2022073certificateless signatureanti malicious KGCblockchainSM9 signature |
| spellingShingle | Fei TANG Ning GAN Xianggui YANG Jinyang WANG Anti malicious KGC certificateless signature scheme based on blockchain and domestic cryptographic SM9 网络与信息安全学报 certificateless signature anti malicious KGC blockchain SM9 signature |
| title | Anti malicious KGC certificateless signature scheme based on blockchain and domestic cryptographic SM9 |
| title_full | Anti malicious KGC certificateless signature scheme based on blockchain and domestic cryptographic SM9 |
| title_fullStr | Anti malicious KGC certificateless signature scheme based on blockchain and domestic cryptographic SM9 |
| title_full_unstemmed | Anti malicious KGC certificateless signature scheme based on blockchain and domestic cryptographic SM9 |
| title_short | Anti malicious KGC certificateless signature scheme based on blockchain and domestic cryptographic SM9 |
| title_sort | anti malicious kgc certificateless signature scheme based on blockchain and domestic cryptographic sm9 |
| topic | certificateless signature anti malicious KGC blockchain SM9 signature |
| url | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2022073 |
| work_keys_str_mv | AT feitang antimaliciouskgccertificatelesssignatureschemebasedonblockchainanddomesticcryptographicsm9 AT ninggan antimaliciouskgccertificatelesssignatureschemebasedonblockchainanddomesticcryptographicsm9 AT xiangguiyang antimaliciouskgccertificatelesssignatureschemebasedonblockchainanddomesticcryptographicsm9 AT jinyangwang antimaliciouskgccertificatelesssignatureschemebasedonblockchainanddomesticcryptographicsm9 |