Practical Certificateless Aggregate Signatures From Bilinear Maps

Zheng Gong; Y. Long; X. Hong; Kefei Chen

Practical Certificateless Aggregate Signatures From Bilinear Maps

Zheng Gong, Y. Long, X. Hong, Kefei Chen

Research output: Contribution to journal › Article › Academic › peer-review

17 Citations (Scopus)

68 Downloads (Pure)

Abstract

Aggregate signature is a digital signature with a striking property that anyone can aggregate n individual signatures on n different messages which are signed by n distinct signers, into a single compact signature to reduce computational and storage costs. In this work, two practical certificateless aggregate signature schemes are proposed from bilinear maps. The first scheme CAS-1 reduces the costs of communication and signer-side computation but trades off the storage, while CAS-2 minimizes the storage but sacrifices the communication costs. One can choose either of the schemes by consideration of the application requirement. Compare with ID-based schemes, our schemes do not entail public key certificates as well and achieve the trust level 3, which imply the frauds of the authority are detectable. Both of the schemes are proven secure in the random oracle model by assuming the intractability of the computational Diffie-Hellman problem over the groups with bilinear maps, where the forking lemma technique is avoided.

Original language	Undefined
Pages (from-to)	2093-2106
Number of pages	15
Journal	Journal of information science and engineering
Volume	26
Issue number	6
Publication status	Published - Nov 2010

Keywords

SCS-Cybersecurity
MSC-11T71
EWI-15300
Authentication
IR-65469
Certificateless
Aggregate signature
METIS-277391

Access to Document

http://www.iis.sinica.edu.tw/page/jise/2010/201011_10.pdf

Cite this

@article{f78aa1feaa8540808bdee9c6749f2e50,

title = "Practical Certificateless Aggregate Signatures From Bilinear Maps",

abstract = "Aggregate signature is a digital signature with a striking property that anyone can aggregate n individual signatures on n different messages which are signed by n distinct signers, into a single compact signature to reduce computational and storage costs. In this work, two practical certificateless aggregate signature schemes are proposed from bilinear maps. The first scheme CAS-1 reduces the costs of communication and signer-side computation but trades off the storage, while CAS-2 minimizes the storage but sacrifices the communication costs. One can choose either of the schemes by consideration of the application requirement. Compare with ID-based schemes, our schemes do not entail public key certificates as well and achieve the trust level 3, which imply the frauds of the authority are detectable. Both of the schemes are proven secure in the random oracle model by assuming the intractability of the computational Diffie-Hellman problem over the groups with bilinear maps, where the forking lemma technique is avoided.",

keywords = "SCS-Cybersecurity, MSC-11T71, EWI-15300, Authentication, IR-65469, Certificateless, Aggregate signature, METIS-277391",

author = "Zheng Gong and Y. Long and X. Hong and Kefei Chen",

year = "2010",

month = nov,

language = "Undefined",

volume = "26",

pages = "2093--2106",

journal = "Journal of information science and engineering",

issn = "1016-2364",

publisher = "Institute of Information Science",

number = "6",

}

TY - JOUR

T1 - Practical Certificateless Aggregate Signatures From Bilinear Maps

AU - Gong, Zheng

AU - Long, Y.

AU - Hong, X.

AU - Chen, Kefei

PY - 2010/11

Y1 - 2010/11

N2 - Aggregate signature is a digital signature with a striking property that anyone can aggregate n individual signatures on n different messages which are signed by n distinct signers, into a single compact signature to reduce computational and storage costs. In this work, two practical certificateless aggregate signature schemes are proposed from bilinear maps. The first scheme CAS-1 reduces the costs of communication and signer-side computation but trades off the storage, while CAS-2 minimizes the storage but sacrifices the communication costs. One can choose either of the schemes by consideration of the application requirement. Compare with ID-based schemes, our schemes do not entail public key certificates as well and achieve the trust level 3, which imply the frauds of the authority are detectable. Both of the schemes are proven secure in the random oracle model by assuming the intractability of the computational Diffie-Hellman problem over the groups with bilinear maps, where the forking lemma technique is avoided.

AB - Aggregate signature is a digital signature with a striking property that anyone can aggregate n individual signatures on n different messages which are signed by n distinct signers, into a single compact signature to reduce computational and storage costs. In this work, two practical certificateless aggregate signature schemes are proposed from bilinear maps. The first scheme CAS-1 reduces the costs of communication and signer-side computation but trades off the storage, while CAS-2 minimizes the storage but sacrifices the communication costs. One can choose either of the schemes by consideration of the application requirement. Compare with ID-based schemes, our schemes do not entail public key certificates as well and achieve the trust level 3, which imply the frauds of the authority are detectable. Both of the schemes are proven secure in the random oracle model by assuming the intractability of the computational Diffie-Hellman problem over the groups with bilinear maps, where the forking lemma technique is avoided.

KW - SCS-Cybersecurity

KW - MSC-11T71

KW - EWI-15300

KW - Authentication

KW - IR-65469

KW - Certificateless

KW - Aggregate signature

KW - METIS-277391

M3 - Article

SN - 1016-2364

VL - 26

SP - 2093

EP - 2106

JO - Journal of information science and engineering

JF - Journal of information science and engineering

IS - 6

ER -