本文選題：數(shù)字簽名 + 服務(wù)器輔助驗(yàn)證簽名��； 參考：《電子科技大學(xué)》2014年博士論文

【摘要】：數(shù)字簽名技術(shù)是信息安全的核心技術(shù)之一,不斷發(fā)展的數(shù)字簽名技術(shù)正逐步滿足人們現(xiàn)實(shí)生活中的各種應(yīng)用需求。相應(yīng)的,人們對于數(shù)字簽名的要求也在逐漸提高,對數(shù)字簽名方案的效率和安全性也提出了新的要求。同時,隨著無線網(wǎng)絡(luò)和信息技術(shù)的飛速發(fā)展,越來越多的無線終端設(shè)備投入使用,這些設(shè)備往往具備有限的計算能力,而在已有的應(yīng)用中,數(shù)字簽名協(xié)議常常有著較重的運(yùn)算量,這些運(yùn)算量對于傳統(tǒng)的計算機(jī)設(shè)備來講不算負(fù)擔(dān),但對于類似智能卡之類的無線設(shè)備來講,就是一個值得重視的問題。計算效率問題在一些安全性能優(yōu)異或者具備特殊用途的密碼協(xié)議上表現(xiàn)得尤為明顯。因此,數(shù)字簽名加速技術(shù)與安全性是具有重要意義的研究課題。針對上述問題,本文從簽名驗(yàn)證和簽名生成兩方面研究如何加速數(shù)字簽名,提出新的簽名方案,且結(jié)合一些具有特殊用途的密碼體制,分析現(xiàn)有典型簽名方案的安全性和效率,提出相應(yīng)的改進(jìn)措施。具體工作包括:1.從加速簽名驗(yàn)證的角度出發(fā),研究了服務(wù)器輔助驗(yàn)證簽名體制,這種簽名方案中,驗(yàn)證者和一個計算能力強(qiáng)但不一定完全信任的服務(wù)器運(yùn)行交互協(xié)議,將耗時運(yùn)算交給服務(wù)器來完成,從而完成簽名驗(yàn)證。本文對現(xiàn)有的一些服務(wù)器輔助驗(yàn)證簽名方案進(jìn)行安全性分析,并給出一種改進(jìn)方案。此外,將服務(wù)器輔助驗(yàn)證簽名與聚合簽名相結(jié)合,定義服務(wù)器輔助驗(yàn)證聚合簽名,給出安全模型,并提出一種具體方案構(gòu)造,該方案加快驗(yàn)證速度,最后證明其安全性。2.從加速簽名生成的角度出發(fā),研究了使用變色龍哈希函數(shù)來加快數(shù)字簽名的生成,具體地,我們將變色龍哈希函數(shù)用于代理簽名方案,使代理簽名人能快速有效地計算代理簽名,降低代理簽名人的計算成本,提高簽名速度和效率。本文基于離散對數(shù)問題和大整數(shù)分解問題,分別提出兩個結(jié)合變色龍哈希函數(shù)的代理簽名方案,方案在授權(quán)階段采用抗密鑰泄露的變色龍哈希函數(shù),代理簽名人就只需找到一個變色龍哈希碰撞即可生成有效的代理簽名,并給出在隨機(jī)預(yù)言機(jī)模型下兩個方案的安全證明。3.當(dāng)前,將聚合簽名與無證書簽名體制相結(jié)合的簽名方案紛紛提出,本文發(fā)現(xiàn)現(xiàn)有的一種無證書聚合簽名方案存在安全漏洞,提出改進(jìn)的無證書短簽名方案,并在此基礎(chǔ)上,構(gòu)造了改進(jìn)的無證書聚合簽名方案,使得簽名方案在簽名驗(yàn)證階段,既能保持對運(yùn)算的計算量是一個常量,同時也是可證安全的。此外,還提出了一種新的無證書短簽名方案,并在隨機(jī)預(yù)言機(jī)模型下證明了方案的安全性。4.研究基于身份的環(huán)簽名方案�；谏矸莸沫h(huán)簽名方案由于其自身的實(shí)用性,應(yīng)用非常廣泛。許多方案被不斷提出,這些方案以提高簽名效率,加快簽名速度為目標(biāo),并聲稱自己是安全的。本文對現(xiàn)有的一個方案做了安全性分析,并給出改進(jìn)方案及相應(yīng)的安全性證明。對現(xiàn)有的另外一個方案做了安全性分析,指出其同樣存在安全問題。
[Abstract]:Digital signature is one of the core technology of information security, digital signature technology is gradually evolving to meet various application needs of people in real life. Accordingly, people for the requirements of digital signature is gradually increased, the efficiency and security of the digital signature scheme is also proposed new requirements. At the same time, with the rapid development of the wireless network and information technology, the wireless terminal equipment put into use more and more, these devices tend to have limited computing capability, and the existing applications, digital signature protocols often have a heavy computation, the computation burden for computer equipment is not traditional, but similar to wireless smart card the device and the like, is a problem worthy of attention. The computational efficiency problem in some excellent safety performance or have the special use of cryptographic protocols on the performance was particularly Obvious. Therefore, digital signature technology and accelerate security is a significant research topic. Aiming at the above problems, this paper studies two aspects of how to speed up the generation of digital signature from the signature verification and signature, proposed new signature schemes, and combined with special purpose code system, analysis of the existing typical signature schemes and security efficiency, put forward the corresponding improvement measures. The specific work includes: 1. from the perspective of accelerating the signature verification, the server aided verification signature, the verifier signature scheme, and a computational ability but not completely trusted server interaction protocol, will take to the server to complete the operation, so as to complete the signature this paper verified. Some of the existing server aided verification signature scheme security analysis, and gives an improved scheme. In addition, the AIDS testing service Certificate signature and aggregate signature combination, definition of server aided verification aggregate signature, given security model, and put forward a concrete project construction, the project to speed up the verification speed, finally prove the safety of.2. from accelerated signature generation perspective, studied the use of chameleon hash function to accelerate the generation of digital signature in detail, we will chameleon hash function for proxy signature scheme, the proxy signer can effectively reduce the computational cost of computing proxy signature, proxy signer's signature, improve the speed and efficiency. In this paper, the discrete logarithm problem and the integer factorization problem based, are two with chameleon hash function of the proxy signature scheme, scheme the chameleon hash function key anti leakage in the authorization stage, the proxy signer can just find a chameleon hash collision to generate a valid proxy signature The name, is given in the random oracle model two schemes to prove safety.3. at present, the signature and aggregate signature certificateless signature combination have been proposed, this paper found that the existing certificateless aggregate signature scheme of security vulnerabilities, proposed certificateless short signature scheme is improved, and on this basis. Certificateless aggregate signature scheme is constructed, the signature and signature verification, can be calculated for the operation is a constant, and is provably secure. In addition, a new certificateless short signature scheme was proposed, and the proof of identity based ring signature in security study on.4. scheme in the random oracle model. Identity based ring signature scheme because of its practicality, and is widely used. Many solutions have been proposed, the signature scheme to improve efficiency, speed up the sign Speed as the goal, and claimed to be safe. This paper makes the security analysis of an existing scheme, and gives the improvement scheme and its security proof. For another the existing scheme do safety analysis, pointed out that the same security problems.

【學(xué)位授予單位】：電子科技大學(xué)
【學(xué)位級別】：博士
【學(xué)位授予年份】：2014
【分類號】：TN918.91

【共引文獻(xiàn)】

相關(guān)期刊論文 前10條

1 陳建能;;一個新的基于證書聚合簽名方案[J];福建電腦;2013年08期

2 明洋;趙祥模;王育民;;無證書聚合簽名方案[J];電子科技大學(xué)學(xué)報;2014年02期

3 張玉磊;李臣意;王彩芬;張永潔;;無證書聚合簽名方案的安全性分析和改進(jìn)[J];電子與信息學(xué)報;2015年08期

4 陳建能;岳昊;黃振杰;;一個可證安全的基于證書聚合簽名方案[J];計算機(jī)工程與應(yīng)用;2013年21期

5 桂海仁;張斌;;一種基于聚合簽名的服務(wù)會話認(rèn)證協(xié)議[J];計算機(jī)工程與應(yīng)用;2014年12期

6 喻t瑛;何大可;;一種新的無證書聚合簽名[J];計算機(jī)應(yīng)用研究;2014年08期

7 王啟明;甘泉;時合生;;基于哈希函數(shù)的無證書聚合簽名方案研究[J];計算機(jī)與現(xiàn)代化;2015年04期

8 湯小超;王斌;楊睛;李純;;一種無證書的順序聚合簽名方案[J];合肥工業(yè)大學(xué)學(xué)報(自然科學(xué)版);2015年06期

9 侯紅霞;張雪鋒;董曉麗;;改進(jìn)的無證書聚合簽名方案[J];山東大學(xué)學(xué)報(理學(xué)版);2013年09期

10 許艷;黃劉生;田苗苗;仲紅;;可證安全的高效無證書有序多重簽名方案[J];通信學(xué)報;2014年11期

相關(guān)博士學(xué)位論文 前4條

1 劉賀;移動網(wǎng)絡(luò)接入認(rèn)證的隱私保護(hù)研究[D];北京交通大學(xué);2014年

2 郭瑞;高效的可證明安全無證書公鑰密碼體制及其應(yīng)用[D];北京郵電大學(xué);2014年

3 成林;可證明安全的無證書數(shù)字簽名方案的研究[D];北京郵電大學(xué);2014年

4 鄧江;新型認(rèn)證協(xié)議研究[D];電子科技大學(xué);2015年

相關(guān)碩士學(xué)位論文 前1條

1 周俊;車聯(lián)網(wǎng)環(huán)境下信息認(rèn)證技術(shù)研究[D];長安大學(xué);2014年

，

本文編號：1748040