Cryptology ePrint Archive: Report 2005/038

Cryptanalysis of improvement of digital signature with message recovery using self-certified public keys and its variants

Yi-Hwa Chen and Jinn-Ke Jan

Abstract: In 2003, Tseng et al. proposed a self-certified public key signature with message recovery, which gives two advantages: one is that the signer・s public key can simultaneously be authenticated in verifying the signature and the other one is that only the specified verifier can recover the message. Lately, Xie and YU proposed an attack to the Tseng et al.・s scheme under the cases: the specified verifier substitutes his secret key or two or more specified verifiers cooperatively forge the signer・s signature. About the same time, Shao also proposed another insider forgery attack to break the Tseng et al.・s scheme. In addition, he claimed the Tseng et al.・s scheme without the properties of non-repudiation and forward security. Therefore, he proposed an improved scheme to overcome the weakness. In this paper, we will show that the Shao・s improved scheme is still insecure against the insider forgery attack. A specified verifier can forge many different valid signatures with the same message to the other verifiers who cooperatively provide their secret keys. Furthermore, we give a small modification to overcome this weakness.

Category / Keywords: public-key cryptography / cryptanalysis;Authenticated encryption; Signature; Forward security; Message linkage; Self-certificated public key;

Date: received 14 Feb 2005, withdrawn 13 Mar 2005

Contact author: yh_chen at seed net tw

Available format(s): (-- withdrawn --)

Version: 20050313:141653 (All versions of this report)

Short URL:

Discussion forum: Show discussion | Start new discussion

[ Cryptology ePrint archive ]