标题: | 代理签章具有前向安全与单次特性及应用于公开金钥建设 On Proxy Signatures with Forward-Secure and One-time Properties and their Applications in PKI |
作者: | 张明信 Ming-Hsin Chang 叶义雄 Advisor : Dr. Yi-Shiung Yeh 资讯科学与工程研究所 |
关键字: | 代理签章;公开金钥建设;前向安全;单次签章;proxy signature;one-time signautre;forward-secure;PKI;DSA |
公开日期: | 2004 |
摘要: | 网际网路越来越多使用于商业上,安全之机制的实际应用,必须要从纸式的文件世界,改为电子文件世界,而电子文件之数位签章提供了个人签章的功能,但此签章很少考虑到使用于代表机关之签章或是代理签章。而代理签章产生主要目标是解决这一个问题,而且不泄漏代理人之私密讯息,且具有原签章者之签章权利。 实际上,已经有很多代理签章方法之建议,但很多都无法运用于实际系统,因为提出建议方法时,作者证明其方法的安全性后,又常有其他的缺失被发现。此外,其建议方法无法使用于现行之签章方法。而DSA和ECDSA为大家所熟知之签章方法,具有安全性,所以我们建议代理签章使用DSA的方法,使代理签章成为可行的签章机制。补足签章者之验证问题,在实用性上,更进一步,公开金钥建设 (Public-Key Infrastructure, PKI) 是整合密码学与凭证机构 (Certificate Authority, CA) 之整体全球网路安全,传统之代理签章机制,几乎无法使用于PKI的架构中,我们依照 PKI的特性设计新的流程,使代理签章能使用于PKI的架构中,实际使用于应用系统,使代理签章更能符合实用。 另一方面,我们发展了前向安全性代理签章,它可以保证,至目前之签章私密金钥与资料,没有被泄漏,保证之前资料之安全性。而且使用之方法必须简单,特别不需要散布资料,或者是保护储存机制,所以不增加金钥管理的经费。其另外应用可以使用于代理签章之签章的时戳和代理签章时限,签章者需要使用当时之合法金钥,即有隐性时戳之功能,签章金钥更新超出使用时限,限制了签章者之代理功能。 单次签章 (one-time signature)方法的签章和验证优点是非常有效率,他们适用于低运算功能之晶片卡,而Lamport 是最先发明的数位签章是基于单向杂凑函数为基础。如果签章资料长度很大,然而Lamport 的单次签章方法需要很大之验证资料与储存空间,我们改进这大量公开金钥,与签章讯息之储存空间问题。我们提出新的有效方法去签发资料长度很大的资讯,我们也发展出单一代理签章,使得Lamport 的单次签章变的可用于实际系统。 As the Internet is used more and more for business, security mechanisms in the electronic world are needed to replace established practice in the paper-based world. While basic digital signature schemes are able to provide most of the functionalities of personal signature, they are less than ideal for institutional purpose or a proxy purpose. A proxy signature scheme was introduced in order to solve this problem without revealing the secret information of a person who wants to delegate his digital signature signing power to someone else. Actually, most of the proposed schemes are theoretical research, because the proxy schemes are not in practice on the field of cryptography. Digital signature Algorithm (DSA) and Elliptic curve DSA (ECDSA) which are pretty well known by their security properties. We develop a proxy signature based on the DSA in which leads the proxy signature scheme on applications in practice. Moreover, PKIs (Public-Key Infrastructures) integrate digital certificates, public cryptography, and certificate authorities into a total worldwide network security architecture. A typical PKI is less effort for utility of proxy signature. We design a new procedure to make proxy signatures adopt for PKIs leading to the proxy signature more applicable in practical application. On the other way, we develop a forward-secure proxy signature scheme. It guarantees that the secret key material at present (or up to date) does not compromise the secrecy of the earlier signature or encrypted material; and it also must be achieved in a simple way, in particular without requiring distribution or protected storage devices, and without increasing key management costs. The forward-secure proxy signature scheme also can be applied on proxy time limitation. The advantages of the one-time signature generation and verification are very efficient and useful for chip cards where low computation complexity is required. Lamport first invented a one-time digital signature scheme based on one-way functions. However, the Lamport one-time scheme requires a large amount of space for storage of authentic information if a large number of messages are signed. We improve the Lamport one-time signature on the amount of storage space for public keys and signed message saving storage space and propose an efficient scheme to sign a long message. We also develop a one-time proxy signature scheme in which we make the Lamport one-time signature useful in practice. |
URI: | http://140.113.39.130/cdrfb3/record/nctu/#GT008717816 http://hdl.handle.net/11536/45779 |
显示于类别: | Thesis |
文件中的档案:
If it is a zip file, please download the file and unzip it, then open index.html in a browser to view the full text content.