Design And Security Analysis Of Arbitrated Quantum Signature

The design and security analysis of quantum signature depend on the related priciples of quantum mechanics such as the indistinguishability of the non-orthogonal paritciles and the No Cloning Theory.Theoretically,quantum signatures are secure against the attacks of the quantum computes.In the quantum schemes,the arbitrators are introduced so as to improve the efficiency and pracability of the quantum signatures.In this paper,the security of some classical arbitrated quantum signatures(AQS)proposed in the the recent years are analyzed and some correspondig improvements are presented.The improved schemes can overcome the security holes existing in these schemes and improve the efficiency.On the otherhand,in this paper,a new secure and efficient AQS protocol based on single photon and one-way function is proposed,too.Our contributions mainly include three asspects as follows.(1)The security against forgery attack and its extended attack of the AQS protocol with multiple signers proposed by Jiang et al.is analyzed.Then,some improvements are proposed.The improved scheme can resist both forgery attack and disavowal attack.On the other hand,the arbitrator doesn't have to be completely trusted.That is,although the arbitrator holds the signer's key,he cannot forge the signature.Therefore,the arbitrator can be semi-trusted.(2)The security of the AQS protocol based on no-completely distinguished orthogonal state is analyzed.The corresponding forgery attack and its extended attack are proposed.Then,a new AQS protocol based on product state is proposed.Our new protocol is more secure and efficient than the old AQS protocol.(3)In this paper,a novel non-entangled AQS scheme based on single photon and one-way function is proposed to solve the problem that entangled states are relatively difficult to produce and affect the efficiency of signature scheme.In the proposed protocol,the signer and the verifier need not execute the key distribution protocol before signing the message.The signer uses his private key and one-way function to generate a quantum signature on the classical message.The arbitrator communicates with the signer through the classical unencrypted channel.On the other hand,in the protocol,no entangled state is used.The proposed protocol is more practicable and efficient than the similar schemes.