An efficient certificateless multi-receiver threshold decryption scheme

Threshold decryption allows only quorum cooperate users to decrypt ciphertext encrypted under a public key. However, such threshold decryption scheme cannot be applied well in this situation where all users have their public and private key pairs, but do not share any private keys corresponding to the public keys, such as mobile network featured with dynamic character. The direct way to achieve threshold decryption in this case is to divide the message into several pieces and then encrypt these pieces with the public keys of different users. However, this is very inefficient. Multireceiver threshold decryption scheme that could be applied efficiently in the above situation. Recently, some certificateless (ID-based) multireceiver threshold decryption (signcryption) schemes are introduced. But the bilinear pairings are used in most of the existing schemes. In this paper, we propose an efficient certificateless threshold decryption scheme using elliptic curve cryptography (ECC) without bilinear pairing. Performance analysis shows that the proposed scheme has lower computation cost than existing some threshold decryption schemes in both encryption and decryption process. Security analysis shows that our scheme is IND-CCA secure, and no one outside of selected receivers can disclose receivers identities, against the adversaries defined in CL-PKC system under the random oracle model.

Download Full-text

Efficient Certificateless Anonymous Multi-Receiver Encryption Scheme without Bilinear Parings

Mathematical Problems in Engineering ◽

10.1155/2018/1486437 ◽

2018 ◽

Vol 2018 ◽

pp. 1-13 ◽

Cited By ~ 2

Author(s):

Ronghai Gao ◽

Jiwen Zeng ◽

Lunzhi Deng

Keyword(s):

Mobile Devices ◽

Security Analysis ◽

Mobile Network ◽

Random Oracle Model ◽

Random Oracle ◽

Bilinear Pairing ◽

Internet Technology ◽

Security And Privacy ◽

Encryption Scheme ◽

The Troubles

With the growing development of Internet technology and popularization of mobile devices, we easily access the Internet anytime and anywhere by mobile devices. It has brought great convenience for our lives. But it brought more challenges than traditional wired communication, such as confidentiality and privacy. In order to improve security and privacy protection in using mobile network, numerous multi-receiver identity-based encryption schemes have been proposed with bilinear pairing and probabilistic hap-to-point (HTP) function. To address the troubles of private key escrow in multi-receiver encryption scheme based on ID-PKC, recently, some certificateless anonymous multi-receiver encryption (CLAMRE) schemes are introduced. But previous CLAMRE schemes using the bilinear pairing are not suitable to mobile device because the use of bilinear pairing and probabilistic hash-to-point (HTP) function results in expensive operation costs in encryption or decryption. In this paper, we propose an efficient CLAMRE scheme using elliptic curve cryptography (ECC) without bilinear pairing and HTP hash function. Since our scheme does not use bilinear pairing and HTP operation during the encryption and decryption process, the proposed CLAMRE scheme has much less computation cost than the latest CLAMRE schemes. Performance analysis shows that runtime of our scheme is much less when the sender generates ciphertext, compared with existing schemes. Security analysis shows proposed CLAMRE scheme provides confidentiality of message and receiver anonymity under the random oracle model with the difficulties of decision Diffie-Hellman problem and against the adversaries defined in CL-PKC system.

Download Full-text

An ID-Based Signature Scheme from Bilinear Pairing Based on Ex-K-Plus Problem

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.403-408.929 ◽

2011 ◽

Vol 403-408 ◽

pp. 929-934 ◽

Cited By ~ 1

Author(s):

Shivendu Mishra ◽

Ritika Yaduvanshi ◽

Anjani Kumar Rai ◽

Nagendra Pratap Singh

Keyword(s):

Random Oracle Model ◽

Random Oracle ◽

Bilinear Pairing ◽

Public Key ◽

Signature Scheme ◽

Signature Schemes ◽

Public And Private ◽

Private Key ◽

Public Keys

In an ID-Based cryptosystem, identity of users are used to generate their public and private keys. In this system private key is generated by trusted private key generator (PKG). Unlike traditional PKI, this system enables the user to use public keys without exchanging public key certificates. With the exploitation of bilinear pairing, several secure and efficient ID-Based signature schemes have been proposed till now. In this paper, we have proposed an ID-Based signature scheme from bilinear pairing based on Ex-K-Plus problem. The proposed scheme is existentially unforgeable in the random oracle model under the hardness of K-CAA problem. Our scheme is also unforgeable due to hardness of ex-k-plus problem and computationally more efficient than other existing schemes.

Download Full-text

EFFICIENT ID-BASED MULTI-RECEIVER THRESHOLD DECRYPTION

International Journal of Foundations of Computer Science ◽

10.1142/s0129054107005091 ◽

2007 ◽

Vol 18 (05) ◽

pp. 987-1004 ◽

Cited By ~ 4

Author(s):

ZHENCHUAN CHAI ◽

ZHENFU CAO ◽

XIAOLEI DONG

Keyword(s):

Ad Hoc ◽

Mobile Ad Hoc Network ◽

Random Oracle Model ◽

Random Oracle ◽

Public Key ◽

The Public ◽

Private Key ◽

Public Keys ◽

Identity Based ◽

Threshold Decryption

Threshold decryption allows a message encrypted under a public key to be read only when a quorum of users cooperate to decrypt the ciphertext. However, such threshold decryption scheme does not apply well in the situation where all the users have their own public/private key pairs, but not share any private key associated with a public key, such as mobile ad hoc network featured by its dynamic character. An immediate way to achieve threshold decryption in this situation is to split the message into pieces, then encrypt these pieces under the public keys of different users. However, it is not efficient. In this paper, we propose an efficient identity based multi-receiver threshold decryption scheme that could be applied efficiently in the above situation. We also define the security notions and prove the security in random oracle model. At last, we add the broadcast feature to the scheme, such that a message could be broadcast to any number of groups.

Download Full-text

Efficient Certificateless Conditional Privacy-Preserving Authentication Scheme in VANETs

Mobile Information Systems ◽

10.1155/2019/7593138 ◽

2019 ◽

Vol 2019 ◽

pp. 1-19 ◽

Cited By ~ 12

Author(s):

Yang Ming ◽

Hongliang Cheng

Keyword(s):

Traffic Safety ◽

Vehicular Ad Hoc Networks ◽

Ad Hoc ◽

Security Analysis ◽

Real Life ◽

Random Oracle Model ◽

Random Oracle ◽

Privacy Preserving ◽

Bilinear Pairing ◽

Security And Privacy

Vehicular ad hoc networks (VANETs) are an increasing important paradigm for greatly enhancing roadway system efficiency and traffic safety. To widely deploy VANETs in real life, it is critical to deal with the security and privacy issues in VANETs. In this paper, we propose a certificateless conditional privacy preserving authentication (CCPPA) scheme based on certificateless cryptography and elliptic curve cryptography for secure vehicle-to-infrastructure communication in VANETs. In the proposed scheme, a roadside unit (RSU) can simultaneously verify plenty of received messages such that the total verification time may be sharply decreased. Furthermore, the security analysis indicates that the proposed scheme is provably secure in the random oracle model and fulfills all the requirements on security and privacy. To further improve efficiency, both map-to-point hash operation and bilinear pairing operation are not employed. Compared with previous CCPPA schemes, the proposed scheme prominently cuts down computation delay of message signing and verification by 66.9%–85.5% and 91.8%–93.4%, respectively, and reduces communication cost by 44.4%. Extensive simulations show that the proposed scheme is practicable and achieves prominent performances of very little average message delay and average message loss ratio and thus is appropriate for realistic applications.

Download Full-text

An Improved RSA-Based Certificateless Signature Scheme

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.687-691.2165 ◽

2014 ◽

Vol 687-691 ◽

pp. 2165-2168

Author(s):

Xue Dong Dong ◽

Hui Min Lu

Keyword(s):

Random Oracle Model ◽

Random Oracle ◽

Type I ◽

Signature Scheme ◽

The Public ◽

Public Keys ◽

Security Properties ◽

Identity Based ◽

Certificateless Signature ◽

Provably Secure

Certificateless-based signature can eliminate the need of certificates in the Public Key Infrastructure and solve the inherent key escrow problem in the identity-based cryptography. In 2012 Zhang et al. [J. Zhang and J. Mao, An efficient RSA-based certificateless signature scheme, Journal of Systems and Software, vol. 85, pp. 638-642, 2012] proposed the first certificateless signature scheme based on RSA operations and showed that their scheme is provably secure in the random oracle model. However, He et al. [D. He, M.Khan, and S. Wu, On the security of a RSA-based certificateless signature scheme, International Journal of Network Security, vol.16, no.1, pp.78-80, 2014] recently showed that Zhang et al.'s scheme is insecure against a type I adversary who can replace users' public keys. In this paper, we propose an improved version based on RSA which not only keeps the original security properties of the signature, but also is secure against a type I adversary.

Download Full-text

A lightweight batch anonymous authentication scheme for VANET based on pairing-free

Computer Science and Information Systems ◽

10.2298/csis171222022s ◽

2018 ◽

Vol 15 (3) ◽

pp. 549-567 ◽

Cited By ~ 1

Author(s):

Cheng Song ◽

Mingyue Zhang ◽

Zongpu Jia ◽

Weiping Peng ◽

Hairu Guo

Keyword(s):

Ad Hoc ◽

Random Oracle Model ◽

Bilinear Pairings ◽

Random Oracle ◽

Authentication Scheme ◽

Type I ◽

The Public ◽

Anonymous Authentication ◽

Security Properties ◽

Trust Authority

Aimed at improving the security and efficiency of anonymous authentication in vehicular ad hoc network (VANET), a certificateless batch anonymous authentication scheme without bilinear pairings is put forward. By coordinating Trust Authority (TA) and vehicles to generate the public/private key pairs and pseudonyms, the system security is freed from dependency on tamperproof devices. Through comprehensive analyses, this scheme is proved not only to be able to realize such security properties as authentication, anonymity, traceability, unforgeability, forward or backward security, etc., but also able to resist Type I and Type II attacks in the random oracle model. Moreover, this scheme effectively reduces system storage load by means of certificateless authentication, and the authentication efficiency can also be increased by realizing batch authentication based on pairing-free calculation. Accordingly, the scheme is proved to be significant in theory and valuable in application in the Internet of Things or embedded environment with limited resources.

Download Full-text

Efficient Group ID-Based Encryption With Equality Test Against Insider Attack

The Computer Journal ◽

10.1093/comjnl/bxaa120 ◽

2020 ◽

Author(s):

Yunhao Ling ◽

Sha Ma ◽

Qiong Huang ◽

Ximing Li ◽

Yijian Zhong ◽

...

Keyword(s):

Security Analysis ◽

Random Oracle Model ◽

Random Oracle ◽

Insider Attack ◽

Efficient Test ◽

Public Keys ◽

Test Algorithm ◽

The Cost ◽

And Storage ◽

Equality Test

Abstract ID-based encryption with equality test (IBEET) allows a tester to compare ciphertexts encrypted under different public keys for checking whether they contain the same message. In this paper, we first introduce group mechanism into IBEET and propose a new primitive, namely group ID-based encryption with equality test (G-IBEET). With the group mechanism: (1) group administrator can authorize a tester to make comparison between ciphertexts of group users, but it cannot compare their ciphertexts with any ciphertext of any user who is not in the group. Such group granularity authorization can make IBEET that adapts to group scenario; (2) for the group granularity authorization, only one trapdoor, named group trapdoor, should be issued to the tester, which can greatly reduce the cost of computation, transmission and storage of trapdoors in traditional IBEET schemes; (3) G-IBEET can resist the insider attack launched by the authorized tester, which is an open problem in IBEET. We give definitions for G-IBEET and propose a concrete construction with an efficient test algorithm. We then give its security analysis in the random oracle model.

Download Full-text

A Batch Authentication Design to Protect Conditional Privacy in Internet of Vehicles

Security and Communication Networks ◽

10.1155/2021/5049766 ◽

2021 ◽

Vol 2021 ◽

pp. 1-17

Author(s):

Yuhao Yang ◽

Xiujie Huang ◽

Jinyu Hu

Keyword(s):

Safety Information ◽

Security Analysis ◽

Random Oracle Model ◽

Random Oracle ◽

Bilinear Pairing ◽

Management Problem ◽

Internet Of Vehicles ◽

The Real ◽

Automated Simulation ◽

Batch Authentication

Internet of vehicles (IoV), a novel technology, holds paramount importance within the transportation domain due to its ability to increase traffic efficiency and safety. Information privacy is of vital importance in IoV when sharing information among vehicles. However, due to the openness of the communication network, information sharing is vulnerable to potential attacks, such as impersonation, modification, side-channel and replay attacks, and so on. In order to resolve the aforementioned problem, we present a conditional privacy-preserving batch authentication (CPPBA) scheme based on elliptic curve cryptography (ECC). The proposed scheme avoids the certificate management problem, conducing to efficiency improvement. When a message is transmitted by a vehicle, its pseudo identity rather than the real identity is also broadcasted along with the shared message, which protects the privacy of the vehicle’s identity. But this privacy is conditional because TA and only the TA can reveal the real identity of the vehicle by tracing. The proposed scheme is batch verifiable, which reduces the computation costs. In addition, our scheme does not involve bilinear pairing operations and does not use the map-to-point hash function, thus making the verification process more effective. An exhaustive efficiency comparison has been carried to show that the proposed CPPBA scheme has lower computation, communication, and storage overheads than the state-of-the-art ones. A relatively comprehensive security analysis has also been carried, which not only shows that the signature design in the CPPBA scheme is unforgeable under the random oracle model but also illustrates that the CPPBA scheme is resistant to various potential attacks. The security is also verified by a popular automated simulation tool, that is, AVISPA.

Download Full-text

Pairing-Free Certificateless Signature with Security Proof

Journal of Computer Networks and Communications ◽

10.1155/2014/792063 ◽

2014 ◽

Vol 2014 ◽

pp. 1-6 ◽

Cited By ~ 3

Author(s):

Wenhao Liu ◽

Qi Xie ◽

Shengbao Wang ◽

Lidong Han ◽

Bin Hu

Keyword(s):

Discrete Logarithm ◽

Random Oracle Model ◽

Bilinear Pairings ◽

Random Oracle ◽

Public Key ◽

Public Key Cryptosystem ◽

Management Problem ◽

Security Proof ◽

Certificateless Public Key Cryptosystem ◽

Certificateless Signature

Since certificateless public key cryptosystem can solve the complex certificate management problem in the traditional public key cryptosystem and the key escrow problem in identity-based cryptosystem and the pairing computation is slower than scalar multiplication over the elliptic curve, how to design certificateless signature (CLS) scheme without bilinear pairings is a challenge. In this paper, we first propose a new pairing-free CLS scheme, and then the security proof is presented in the random oracle model (ROM) under the discrete logarithm assumption. The proposed scheme is more efficient than the previous CLS schemes in terms of computation and communication costs and is more suitable for the applications of low-bandwidth environments.

Download Full-text

Certificate-Based Generalized Ring Signcryption Scheme

International Journal of Foundations of Computer Science ◽

10.1142/s0129054118500211 ◽

2018 ◽

Vol 29 (06) ◽

pp. 1063-1088 ◽

Cited By ~ 3

Author(s):

Caixue Zhou ◽

Guangyong Gao ◽

Zongmin Cui ◽

Zhiqiang Zhao

Keyword(s):

Random Oracle Model ◽

Bilinear Pairings ◽

Random Oracle ◽

Formal Definition ◽

Security Model ◽

Storage Space ◽

Ring Signature ◽

Highly Efficient ◽

Signcryption Scheme

Generalized ring signcryption (GRSC) can realize ring signature and ring signcryption functions with only one key pair and one algorithm. It is very useful for a system with a large number of users, or whose function may be changed, or with limited storage space. We give a formal definition and security model of GRSC in the certificate-based cryptosystem setting and propose a concrete scheme by using bilinear pairings. The confidentiality of our scheme can be proved under the GBDH and CDH assumptions and the unforgeability of our scheme can be proved under [Formula: see text] and CDH assumptions in the random oracle model, and what is more, our scheme has unconditional anonymity. Compared with other certificateless ring signcryption schemes that use bilinear pairings, it is a highly efficient one.

Download Full-text