论文部分内容阅读
通过对2010年亚洲密码会上格基群签名方案进行安全性分析,发现已有的格基群签名方案不能抵抗陷害攻击.由于群管理员拥有所有群成员的签名密钥,因而能够伪造出所有群成员的合法签名.并且在群成员加入时,系统必须更新所有群成员的公私钥及追踪密钥,计算量大且效率低.并且该方案没有给出撤销群成员的方法,不能适应实际应用需求.本文基于格上最近向量的困难性,利用GPV签名,构造出一种能够抵抗陷害攻击并且能够有效进行群成员加入和撤销的格上群签名方案,并在随机预言机模型下证明了方案的安全性.分析了方案的性能,在相同安全条件下,新方案效率更高,实用性更强.
By analyzing the security of the Gecko-group signature scheme at the Asian Cryptosystem 2010, we find that the existing Gecko-group signature scheme can not resist the fraudulent attacks.As the group manager has the signature keys of all the group members, it is possible to fake all When the group members join, the system must update the public and private keys and the tracking keys of all the group members, which is computationally intensive and inefficient, and the scheme does not give the method of canceling the group members and can not adapt to the practical application Requirement.This paper constructs a lattice-based group signature scheme that can resist fraudulent attacks and can effectively join and cancel group members by using the GPV signature based on the difficulty of the nearest vectors on the lattice, and proves the scheme under the random oracle model The security of the scheme is analyzed, and the performance of the scheme is analyzed. Under the same security conditions, the new scheme is more efficient and practical.