A Lightweight Certificateless Aggregation Signature Scheme With Provably Security in the Standard Model

Deng, Li; Ning, Bingqin; Jiang, Yuhong

doi:10.1109/jsyst.2020.2970427

Cited by 17 publications

(8 citation statements)

References 50 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The overall design rationale of this scheme was mainly inspired by Mei et al [15] and Deng et al [39]. In 2021, Mei et al [15] presented a conditional privacy preservation CLAS scheme with multiple security requirements in IoV based on bilinear pairings.…”

Section: Motivationmentioning

confidence: 99%

“…In addition, the security proof is provided in the random oracle model. In 2020, Deng et al [39] put forward the first provable secure CLAS scheme in SM, but it cannot be applied to VANETs because of its inability to resist replay attacks and lack of anonymity. To combine the advantages and solve the problems of the schemes proposed by Mei et al [15] and Deng et al [39], we propose a certificateless aggregate signature scheme with low verification delay, multiple security attributes and conditional privacy protection for VANETs in the standard model.…”

Section: Motivationmentioning

confidence: 99%

See 1 more Smart Citation

A Conditional Privacy-Preserving Certificateless Aggregate Signature Scheme in the Standard Model for VANETs

Wang

Zhang

et al. 2022

IEEE Access

View full text Add to dashboard Cite

Vehicular ad hoc networks (VANETs) are the communication foundation for future intelligent transportation systems and guarantee safe driving of intelligent networked vehicles. Moreover, VANETs face a series of security challenges related to the protection of vehicle privacy, authenticity of transmitted information, and bandwidth limitations. To resolve these contradictions, many certificateless aggregate signature (CLAS) schemes have been proposed. However, the majority of them can neither resist maliciousbut-passive key generation center attacks, replay attacks, and link attacks, nor track the actual identities of malicious vehicles. Meanwhile, the security of previous CLAS schemes in VANETs is only formally provided in the random oracle model (ROM), which might be insecure in actual implementation. In addition, most CLAS schemes still have problems of large verification delays and high communication overhead. To address the above-mentioned problems, a new conditional privacy-preserving CLAS scheme in VANETs is proposed, which adopts full aggregation technology to reduce computation and bandwidth resources. According to the formal security proofs under the computational Diffie-Hellman problem (CDHP) given in the standard model (SM), the security level of this scheme is higher than that of other CLAS schemes under ROM in practical applications. Additionally, the use of pseudonym mechanism realizes conditional privacy protection in VANETs. The performance analysis shows that this scheme has a higher efficiency in terms of computation and communication overhead compared with several previous CLAS schemes.INDEX TERMS Vehicular ad hoc networks (VANETs), conditional privacy preserving, certificateless aggregate signature (CLAS), full aggregation, standard model (SM).

show abstract

Section: Motivationmentioning

confidence: 99%

Section: Motivationmentioning

confidence: 99%

A Conditional Privacy-Preserving Certificateless Aggregate Signature Scheme in the Standard Model for VANETs

Wang

Zhang

et al. 2022

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Some of them look similar since the schemes have been reproduced with minor modifications of the existing ones. In this paper, we show that recently proposed four CLS and CLAS schemes [16], [20], [21], and one CB-signature [23] scheme are insecure against universal forgery attacks, type I attacks, type II attacks or malicious-but-passive-KGC attacks. We then present design principles for construction secure CLS and CLAS schemes to prevent various algebraic attacks including our attacks.…”

Section: Introductionmentioning

confidence: 94%

“…We review Deng et al's scheme [20] and Tseng et al's scheme [21] proven secure in the standard model.…”

Section: A Cls and Clas Schemes In Standard Modelmentioning

confidence: 99%

“…Many provably secure certificateless aggregate signature (CLAS) schemes have been constructed [10]- [16], but most of them were broken or cryptanalyzed and then modified [17]- [19]. Recently, Deng et al [20] and Tseng et al's scheme [21] proposed new efficient CLS and CLAS schemes provable secure in the standard model under the hardness assumptions of the mathematical problems.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Design Principles of Secure Certificateless Signature and Aggregate Signature Schemes for IoT Environments

Shim

2022

IEEE Access

View full text Add to dashboard Cite

Certificateless cryptography resolves the certificate management problem of public-key cryptography and the key-escrow problem of identity-based cryptography. An aggregate signature scheme which allows to aggregate k distinct signatures on k distinct messages of k distinct signers into a single signature reduces communication overhead and computational cost. Due to the suitability of certificateless signature (CLS) and certificateless aggregate signature (CLAS) schemes for IoT environments, similar CLS and CLAS schemes have been proposed for a long time and, despite their security proofs, they have been attacked and modified to prevent the attacks. Even now, similar design methods and similar attacks on the schemes are being repeated. In order to prevent the similar attacks on the schemes, it is necessary to analyze their causes and vulnerabilities. In this paper, we first show that recently proposed five CLS and CLAS schemes are insecure against universal forgery attacks, type I attacks, type II attacks or maliciousbut-passive-KGC attacks. We discuss their security flaws, causes and countermeasures. We then present design principles to prevent various algebraic attacks including our attacks. The design principles will help in the construction of secure CLS and CLAS schemes against the previous attacks and potential attacks.INDEX TERMS Aggregate signature, Certificateless signature, malicious-but-passive-KGC attack, type I attack, type II attack, universal forgery attack.

show abstract

CKAA: Certificateless key‐agreement authentication scheme in digital twin telemedicine environment

Zhang,

Wei,

Zhang

et al. 2023

Trans Emerging Tel Tech

View full text Add to dashboard Cite

Digital twin (DT) technology provides accurate and real‐time visualization data. It is increasingly used in telemedicine to enhance medical efficiency and improve the precision of remote diagnosis and treatment. In telemedicine, DT is used to collect patients' biomedical data and transmit it to cloud servers through wearable devices for simulation, enabling remote diagnosis and treatment. However, telemedicine poses security threats due to the risk of medical data leaks. The security of medical data in transit and the authentication of communication entities are two key issues in cryptography. To address these issue, we propose a certificateless key agreement authentication scheme that does not rely on traditional public key infrastructure and certificate management, reducing the storage cost of resource‐limited wearable devices and avoiding the use of bilinear pairings to lower computational costs. Our scheme includes two parts of key agreement: one between the patient and the cloud server and the other between the patient and the hospital. Through these key agreements, we can ensure the privacy and integrity of medical data during transmission. Furthermore, we prove that the security of our scheme is equivalent to the elliptic curve discrete logarithm assumption in the random oracle model. Therefore, we provide a secure and efficient certificateless key agreement authentication solution that is suitable in digital twin telemedicine environments, particularly for client devices with limited functionality.

show abstract

A Lightweight Certificateless Aggregation Signature Scheme With Provably Security in the Standard Model

Cited by 17 publications

References 50 publications

A Conditional Privacy-Preserving Certificateless Aggregate Signature Scheme in the Standard Model for VANETs

A Conditional Privacy-Preserving Certificateless Aggregate Signature Scheme in the Standard Model for VANETs

Design Principles of Secure Certificateless Signature and Aggregate Signature Schemes for IoT Environments

CKAA: Certificateless key‐agreement authentication scheme in digital twin telemedicine environment

Contact Info

Product

Resources

About