标准模型下可证安全的有效无证书签密方案:10019081(2013)07184605doi:10.11772/j.issn.10019081.2013.07.1846摘要：冃前大多数无证书签密方案都是在随机预言模型下提出的，针对随机预言模型下的方案往往无法在实际应用中构造相应实例这一问题，采用标准模型的方法来进行构造。在対儿个已有标准模型下相应方案分析的基础上，指出它们都是不安全的。以Au等所提出的方案(AUMH,LIUJK,YUENTII,etal.Prac-ticalhierarchicalidentitybasedencryptionandsignatureschemeswithoutrando-moracles・eprint.iacr.org/2006/368.pdf)为基础，利用椭圆曲线上的双线性对性质，提出了一个新的标准模型下可证安全的无证书签密方案。最后,利用决策双线性DiffieHellman(DBDH)等怵］难问题，证明该方案满足适应性选择密文攻击下的不可区分性以及适应性选择消息和身份攻击下的存在不可伪造性，因而方案是安全可靠的。关键词：标准模型；签密；可证明安全；无证书公钥密码体制：TP309.2文献标志码:A英文标题Efficientprovablysecurecertificatelesssigncryptionschemeinstandardmodel---本文来源于网络，仅供参考，勿照抄，如有侵权请联系删除---英文作者名SUNHua1*,MENGKun2英文地址(}.SchoolofComputerandTnformationEngineering,AnyangNormalUniversity,AnyangHenan455000,China;2.DepartmentofComputerScienceandTechnology,TsinghuaUniversity,Bei激ng100084,China英文摘要)Abstract:Atpresent,mostoftheexistingcertificatelesssigncryptionscheme-sprovensecureareproposedintherandomoracle.Concerningtheprob-lemthatthiskindofschemesusuallycannotconstructthecorrespondinginstan-ceinthepracticalapplication,acertificatelesssigncryptionschemewasde-signedinthestandardmode1.Byanalyzingseveralcertificatelesssigncryption-schemesinthestandardmodel,itwaspointedoutthattheywereallinsecure.Base-donAusscheme(AUMH,LIUJK,YUENTH,etal.Practicalhierarchicalidentitybaseden-cryptionandsigna/tureschemeswithoutrandomoracles,eprint.iacr.org/2006/368.pdf),anewprovensecurecertificatelesssigncryptionschemewaspro-posedinthestandardmodelbyusingbilinearpairingtechniqueofellipticcurves.T-ntheend,itisprovedthattheschemesatisfiesindistinguishabilityagainstadap-tivechosenciphertextattackandexistentialunforgeabilityagainstadaptivecho-senmessageandidentityattackunderthecomplexityassumptions,suchasDecision----本文来源于网络，仅供参考，勿照抄，如有侵权请联系删除---schemesprovensecurewereproposedintherandomoracle.AimingalBilinearDiffieHelIman(DBDH)problem.Therefore,theschemewassecureandreli-able.Atpresent,mostofexistedcertificatelesssigncryption---本文来源于网络，仅供参考，勿照抄，如有侵权请联系删除------本文来源于网络，仅供参考，勿照抄，如有侵权请联系删除---notbeabletoconstructthepracticalapplication,wasdesignedinthestandarddecisionalsecureandwasattheproblemthatital-wayscouldcorrespond-ingschemesinthecertificate-lesssigncryptionschememod-el.Byanalyzingseveralcertificateless-signcryptionschemesinthestandardmodel,itwaspointedoutthattheyareallnotsecure.BasedonAusscheme(AUMH,LTUJK,YUENTH,etal.卩racticalhierarchicalidentitybasedencryptionandsignatureschemeswithoutrandomoracles.eprint.iacr.org/2006/368.pdf),anewprovensecurecer-tificatelesssigncryptionschemewasproposedinthestandardmodelbyusingbilin-earpairingtechniqueofellipticcurves.Tnthelast,itwasprovedthatthescheme-satisfiedindistinguishabilityagainstadaptivechosenciphertextattackandex-istentialunforgeabilityagainstadaptivechosenmessageandidentityattackun-derthecomplexityassumptions,suchasbilineardiffiehellmanproblem.Sotheschemereliable.---本文来源于网络，仅供参考，勿照抄，如有侵权请联系删除---