论文信息 - Server-aided signatures verification secure against collusion attack

Server-aided signatures verification secure against collusion attack

Wireless handheld devices which support e-mail and web browsing are increasingly popular. The authenticity of the information received is important, especially for business uses. In server-aided verification (SAV), a substantial part of the verification computation can be offloaded to a powerful but possibly untrusted server. This allows resource-constrained devices to enjoy the security guarantees provided by cryptographic schemes, such as pairing-based signatures, which may be too heavyweight to verify otherwise. To gain unfair advantage, an adversary may bribe the server to launch various kinds of attacks --- to convince that an invalid signature held by a client is a valid one (say for providing false information or repudiable commitment) or to claim that a valid signature is invalid (say for spoiling the offer provided by an opponent). However, these concerns are not properly captured by existing security models. In this paper, we provide a generic pairing-based SAV protocol. Compared with the protocol of Girault and Lefranc in Asiacrypt '05, ours provides a higher level of security yet applicable to a much wider class of pairing-based cryptosystems. In particular, it suggests SAV protocols for short signatures in the standard model and aggregate signatures which have not been studied before.

Willy Susilo | Man Ho Au | Sherman S. M. Chow | W. Susilo | M. Au

[1] Yixian Yang,et al. Comment on Wu et al.'s Server-aided Verification Signature Schemes , 2010, Int. J. Netw. Secur..

[2] Hovav Shacham,et al. Short Signatures from the Weil Pairing , 2001, J. Cryptol..

[3] Marc Girault,et al. Server-Aided Verification: Theory and Practice , 2005, ASIACRYPT.

[4] David Naccache,et al. Secure Delegation of Elliptic-Curve Pairing , 2010, IACR Cryptol. ePrint Arch..

[5] Joseph K. Liu,et al. Identity-based online/offline key encapsulation and encryption , 2011, ASIACCS '11.

[6] Siu-Ming Yiu,et al. Efficient Identity Based Ring Signature , 2005, ACNS.

[7] Moon Sung Lee,et al. Efficient Delegation of Pairing Computation , 2005, IACR Cryptol. ePrint Arch..

[8] Hovav Shacham,et al. Aggregate and Verifiably Encrypted Signatures from Bilinear Maps , 2003, EUROCRYPT.

[9] Reihaneh Safavi-Naini,et al. An Efficient Signature Scheme from Bilinear Pairings and Its Applications , 2004, Public Key Cryptography.

[10] Dan Boneh,et al. Short Signatures Without Random Oracles and the SDH Assumption in Bilinear Groups , 2008, Journal of Cryptology.

[11] Matthew Green,et al. Practical Short Signature Batch Verification , 2009, CT-RSA.

[12] Yi Mu,et al. Server-Aided Verification Signatures: Definitions and New Constructions , 2008, ProvSec.

[13] Sean W. Smith,et al. Batch Pairing Delegation , 2007, IWSEC.

[14] Robert H. Deng,et al. Secure mobile subscription of sensor-encrypted data , 2011, ASIACCS '11.