Please wait a minute...
FITEE
Front. Inform. Technol. Electron. Eng.  2010, Vol. 11 Issue (4): 290-295    DOI: 10.1631/jzus.C0910457
    
A novel multisignature scheme for a special verifier group against clerk and rogue-key attacks
Jia-lun Tsai*,1, Tzong-chen Wu1,2, Kuo-yu Tsai1
1 Department of Information Management, National Taiwan University of Science and Technology, Taiwan 106, Taipei 2 Taiwan Information Security Center, National Taiwan University of Science and Technology, Taiwan 106, Taipei
A novel multisignature scheme for a special verifier group against clerk and rogue-key attacks
Jia-lun Tsai*,1, Tzong-chen Wu1,2, Kuo-yu Tsai1
1 Department of Information Management, National Taiwan University of Science and Technology, Taiwan 106, Taipei 2 Taiwan Information Security Center, National Taiwan University of Science and Technology, Taiwan 106, Taipei
 全文: PDF(109 KB)  
摘要: The digital signature is a very important subject for network security. Considering multiple signers and multiple verifiers, Xie and Yu (2004) pointed out that the multisignature scheme of Laih and Yen (1996) is vulnerable to a harmful attack. An attack can occur when a specified group of verifiers cooperate to forge a multisignature by secret key substitution following the leak of a secret key or by group public key adjustment during the process of renewing membership. Xie and Yu proposed an improvement of Laih and Yen’s multisignature scheme. In this paper, we show that Xie and Yu’s scheme is vulnerable to clerk and rogue-key attacks. We propose an improved multisignature scheme to resist such attacks. In the proposed scheme, multiple signers can generate a multisignature for the message with the signers’ secret keys, and the specified group of verifiers can cooperate to verify the validity of the multisignature with the signers’ public keys and the verifiers’ secret key. The proposed scheme for a special verifier group not only has the advantages of Xie and Yu’s scheme, but also is secure against clerk and rogue-key attacks.
关键词: MultisignatureClerk attackRogue-key attackCryptosystem    
Abstract: The digital signature is a very important subject for network security. Considering multiple signers and multiple verifiers, Xie and Yu (2004) pointed out that the multisignature scheme of Laih and Yen (1996) is vulnerable to a harmful attack. An attack can occur when a specified group of verifiers cooperate to forge a multisignature by secret key substitution following the leak of a secret key or by group public key adjustment during the process of renewing membership. Xie and Yu proposed an improvement of Laih and Yen’s multisignature scheme. In this paper, we show that Xie and Yu’s scheme is vulnerable to clerk and rogue-key attacks. We propose an improved multisignature scheme to resist such attacks. In the proposed scheme, multiple signers can generate a multisignature for the message with the signers’ secret keys, and the specified group of verifiers can cooperate to verify the validity of the multisignature with the signers’ public keys and the verifiers’ secret key. The proposed scheme for a special verifier group not only has the advantages of Xie and Yu’s scheme, but also is secure against clerk and rogue-key attacks.
Key words: Multisignature    Clerk attack    Rogue-key attack    Cryptosystem
收稿日期: 2009-07-25 出版日期: 2010-03-22
CLC:  TP309  
基金资助: Project supported in part by the National Science Council (Nos. NSC 97-2745-P-001-001-, NSC 98-2219-E-011-001-, NSC 98-2221-E-011-
073-MY3, and NSC 98-2218-E-011-018-)
通讯作者: Jia-lun TSAI     E-mail: crousekimo@yahoo.com.tw
服务  
把本文推荐给朋友
加入引用管理器
E-mail Alert
RSS
作者相关文章  
Jia-lun Tsai
Tzong-chen Wu
Kuo-yu Tsai

引用本文:

Jia-lun Tsai, Tzong-chen Wu, Kuo-yu Tsai. A novel multisignature scheme for a special verifier group against clerk and rogue-key attacks. Front. Inform. Technol. Electron. Eng., 2010, 11(4): 290-295.

链接本文:

http://www.zjujournals.com/xueshu/fitee/CN/10.1631/jzus.C0910457        http://www.zjujournals.com/xueshu/fitee/CN/Y2010/V11/I4/290

[1] Hui-fang YU , Bo YANG. Low-computation certificateless hybrid signcryption scheme[J]. Front. Inform. Technol. Electron. Eng., 2017, 18(7): 928-940.