Paper 2013/093

On the security of a certificateless aggregate signature scheme

Lin Cheng, Qiaoyan Wen, Zhengping Jin, Hua Zhang, and Liming Zhou

Abstract

Aggregate signature can combinensignatures on nmessages fromnusers into a single short signature, and the resulting signature can convince the verifier that thenusers indeed signed the ncorresponding messages. This feature makes aggregate signature very useful especially in environments with low bandwidth communication, low storage and low computability since it greatly reduces the total signature length and verification cost. Recently, Xiong et al. presented an efficient certificateless aggregate signature scheme. They proved that their scheme is secure in a strengthened security model, where the “malicious-but-passive” KGC attack was considered. In this paper, we show that Xiong et al.’s certificateless aggregate signature scheme is not secure even in a weaker security model called “honest-but-curious” KGC attack model.

Metadata
Available format(s)
PDF
Category
Public-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
cryptanalysis
Contact author(s)
stonewoods302 @ 163 com
History
2013-02-20: received
Short URL
https://ia.cr/2013/093
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2013/093,
      author = {Lin Cheng and Qiaoyan Wen and Zhengping Jin and Hua Zhang and Liming Zhou},
      title = {On the security of a certificateless aggregate signature scheme},
      howpublished = {Cryptology {ePrint} Archive, Paper 2013/093},
      year = {2013},
      url = {https://eprint.iacr.org/2013/093}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.