An improved signature scheme without using one-way Hash functions.
Jianhong Zhang*, Yumin Wang**
*College of Science, North China University of Technology, Beijing 100041, China **State Key Lab. On ISN, Xidian University, Xi’an, Shaanxi 710071, China
Abstract
Recently, Chang et al. give a digital signature scheme, where neither one-way hash function nor message redundancy schemes are used, but Zhang et al. has shown that the scheme was forgeable, namely, any one can forge a new signature by the signers signature, and give two forgery attacks. To the above attacks, we give an improved signature scheme based on Chang signature scheme and analyze the security of the improved scheme.
Keywords: Digital signature; Message recovery; Redundancy message; Hash function
導讀:
1)
這是一篇改良版的 digital signature,他主要的方法是用了 XOR 來取代原本的代數運算。
XOR 在硬件(hardware)的實現速度也很快,成本很低廉。改良的方法算是實用。
其实我觉得(y+m)≡0 (mod p )的情况可以从应用层上解决。就是加密前的一个编码问题而已。就是说经过编码后让这个M落在我们指定的一个空间。
除了参考4的那种方法,你还有想到其他方法吗?说出来参考一下吧。或者说有什么改进的方法吗?我想到让那个k的取值跟M建立某种可验证的关系,这样参考4提到的方法就不可行了。
如果指的是 http://bbs.pediy.com/showpost.php?p=619498&postcount=1 (An improved signature scheme without
using one-way Hash functions)的附件4,那應該會是 [4] S.-P. Shih, C.-T. Lin, W.-B. Yang, H.-M. Sun, Digital multi-signature schemes for authenticating
delegates in mobile code systems, IEEE Trans. Veh. Technol. 49 (July) (2000) 1464C1473.
如果指的是 http://bbs.pediy.com/showpost.php?p=684694&postcount=6 (Cryptanalysis of a signature scheme without using one-way Hash functions) 的附件4,那應該會是 [4] YYi X,Slew CK.Attacks on Shieh-Lin-Yang-Sun digital muhisignature schemes for authenticating delegates in mobile code systems. IEEE Trans Veh Techrm 1.2002,51:1313~1315.
我猜你指的那篇文章有可能是指第二個,如果是的話,我沒有那篇。
晚一點我去看看Attacks on Shieh-Lin-Yang-Sun digital muhisignature schemes for authenticating delegates in mobile code systems 這篇內容。