Security and Design Analysis of Certificateless Signature Schemes as Teaching Cases of Cryptography and Security Course Education

More and more security and privacy issues have been exposed which lead to the urgent requirement of solving the security and privacy. Many universities and colleges offer the course education of cryptography and security and make it be an important compulsory course. However, cryptography as the key technology of solving security and privacy is very theoretical and very hard to be mastered by the students. In this paper, we use the hot cryptosystem - certificateless signature scheme as the teaching case. By adopting two current certificateless signature schemes, we analyze the existing design and security problems of these two certificateless signature schemes in cryptography course education. We give the details attacking process of forging a valid certificateless signature without known the signer’s private key. In the same time, we analyze these problems and present some simple improvement methods. By using case teaching, it can make the student easier and better master the cryptosystem in cryptography course education.

[1]  Gaurav Sharma,et al.  An Improved RSA-based Certificateless Signature Scheme for Wireless Sensor Networks , 2016, Int. J. Netw. Secur..

[2]  P. Vasudeva Reddy,et al.  Efficient and secure pairing-free certificateless directed signature scheme , 2018, J. King Saud Univ. Comput. Inf. Sci..

[3]  Yi Mu,et al.  Certificateless Signatures: New Schemes and Security Models , 2012, Comput. J..

[4]  Chun-I Fan,et al.  Truly Non-Repudiation Certificateless Short Signature Scheme from Bilinear Pairings , 2011, J. Inf. Sci. Eng..

[5]  G. P. Biswas,et al.  A pairing-free and provably secure certificateless signature scheme , 2018, Inf. Sci..

[6]  Kyung-Ah Shim,et al.  A New Certificateless Signature Scheme Provably Secure in the Standard Model , 2019, IEEE Systems Journal.

[7]  Chin-Chen Chang,et al.  A Strong RSA-based and Certificateless-based Signature Scheme , 2016, Int. J. Netw. Secur..

[8]  Yi Mu,et al.  Improved certificateless signature scheme provably secure in the standard model , 2012, IET Inf. Secur..

[9]  Jie Cui,et al.  An efficient certificateless aggregate signature without pairings for vehicular ad hoc networks , 2018, Inf. Sci..

[10]  SK Hafizul Islam,et al.  Provably Secure and Lightweight Certificateless Signature Scheme for IIoT Environments , 2018, IEEE Transactions on Industrial Informatics.

[11]  Jayaprakash Kar,et al.  Certificateless Public Key Cryptography: A Research Survey , 2016 .

[12]  Debiao He,et al.  New Certificateless Aggregate Signature Scheme for Healthcare Multimedia Social Network on Cloud Environment , 2018, Secur. Commun. Networks.

[13]  Kim-Kwang Raymond Choo,et al.  An efficient provably-secure certificateless signature scheme for Internet-of-Things deployment , 2018, Ad Hoc Networks.

[14]  Qi Chuanda Cryptanalysis and improvement of a certificateless signature scheme , 2013 .

[15]  Sébastien Canard,et al.  Certificateless Public Key Cryptography in the Standard Model , 2018, Fundam. Informaticae.

[16]  Chunhua Su,et al.  A Novel Certificateless Signature Scheme for Smart Objects in the Internet-of-Things , 2017, Sensors.

[17]  Song Ru-shun Efficient certificateless signature and blind signature schemes , 2009 .

[18]  Ying-Hao Hung,et al.  Certificateless Signature with Strong Unforgeability in the Standard Model , 2015, Informatica.

[19]  Sébastien Canard,et al.  An Efficient Certificateless Signature Scheme in the Standard Model , 2016, ICISS.

[20]  Xiaotie Deng,et al.  Key Replacement Attack Against a Generic Construction of Certificateless Signature , 2006, ACISP.

[21]  Da Li,et al.  Certificateless Signature Scheme without Random Oracles , 2009, ISA.