Comment on a Digital Signature Scheme with Using Self-Certified Public Keys

Author

Jianhong, Zhang ; Hua, Chen ; Shengnan, Gao ; Qin, Geng

Author_Institution

Coll. of Sci., North China Univ. of Technol., Beijing, China

Volume

3

fYear

2009

fDate

15-17 May 2009

Firstpage

678

Lastpage

680

Abstract

Digital signature is an important cryptographical tool. In a digital signature with using self-certified public key, the verification signature and public key can be carried out in a logic step. Recently, Tseng et al proposed a digital signature schemes with using self-certified public key. Unfortunately, Shao et.al showed that the scheme was insecure, and gives an improvement scheme. In this works, we analyze security of Shao et.al scheme and his attack and show that the attack is not powerful and the improvement scheme can not resist middle-in-man attack. Namely, when an adversary controls the communication channel between the signer Ui and Uj, he can tamper´s signature on the message M, which is sent to Uj, as his signature on the message M under the condition of not knowing the message M. This attack is very frightful over the internet transactions.

Keywords

digital signatures; public key cryptography; communication channel; cryptographical tool; digital signature scheme; self-certified public key cryptography; verification signature; Communication channels; Communication system control; Digital signatures; Information technology; Internet; Public key; Public key cryptography; Resists; Seals; Security; digital signature; security anlaysis; self-certified public key;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Technology and Applications, 2009. IFITA '09. International Forum on

Conference_Location

Chengdu

Print_ISBN

978-0-7695-3600-2

Type

conf

DOI

10.1109/IFITA.2009.49

Filename

5232217