Research And Application Of Certificateless Signature

In modern society,the security of data has emerged as a great concern.As an important primitive of public key cryptography,the digital signature provides secure and efficient authentication protocols for information networks and systems ensuring data to be authenticated in a manner that repudiation and modification are disallowed during transmission.Certificateless signature(CLS)is considered to be a favorable candidate that mitigates the expensive overhead from the certificate management in the public key infrastructure-based(PKI-based)signature and avoids the potential security risks from the key escrow problem in the identity-based(ID-based)signature.Featured with the certificate-free and escrow-free properties,CLS has attracted great attention from the industrial and academic.In this thesis,we make a comprehensive study on CLS with its application and achieve the following contributions:(1)This thesis presents the first multi-use unidirectional certificateless proxy resignature(CL-PRS)scheme.In the presented scheme,the proxy is allowed to convert a delegatee's signature into a delegator's signature on the same message unidirectionally,while the delegatee's signature can be either the original signature or the converted signature.The scheme is provably secure based on the extended computational DiffieHellman assumption under the random oracle model.Performance analysis demonstrates that our scheme is superior to the related works.(2)This thesis proposes a secure and efficient CLS scheme with batch verification and invalid signature identification in the IoT-based environment.In the proposed scheme,the verifier can check the correctness of numerous signatures simultaneously and the invalid signature can be identified quickly at once for the batch verification failure.The scheme is proven to be secure based on the elliptic curve discrete logarithm problem(ECDLP)under the random oracle model.Compared with the existing CLS schemes with batch verification,our scheme outperforms in the security and performance.(3)This thesis puts forward an efficient privacy-preserving authentication protocol for heterogeneous systems in the industrial Internet of Things(IIoT).Constructed by the heterogeneous proxy re-signature scheme,the presented protocol provides secure privacy-preserving communication between ID-based cryptosystem and CL-based cryptosystem.The security strength of our protocol has been proven based on the extended computational Diffie-Hellman assumption under the random oracle model.The experimental simulation indicates that our protocol is feasible for IIoT-based environment.