【作者】 梁一鑫；

【导师】 冯涛；

【作者基本信息】 兰州理工大学 ， 计算机软件与理论， 2012， 硕士

【摘要】 代理重签名是一类特殊的数字签名，通过一个代理者可以将Alice的签名转换为Bob在同一个消息上的签名。并且代理者在转换过程中不能得到Alice或者Bob的签名密钥。由于代理重签名拥有特殊的转换功能，其在简化证书管理、身份匿名、特殊路径证明和数字版权管理系统等方面有广泛的应用前景。针对目前代理重签名存在密钥托管及证书管理的复杂度问题。A1-Riyami和Perterson提出的无证书的公钥密码体制，密钥生成中心无法获得任何用户的私钥,从而解决了密钥托管和证书管理复杂度问题，效率比传统的PKI的公钥密码体制高，安全性比基于身份的公钥密码体制强。因此，本文运用双线性对的技术以及Waters提出的标准模型签名的框架，提出了无证书代理重签名方案，并在标准模型下证明了该方案的安全性。在标准模型下该方案在假设NGBDH问题和Many-DH问题中，能抵抗适应性选择消息攻击的存在伪造性。无证书代理重签名方案可以应用于移动设备、无线传感器网络等需要低带宽和低处理能力的环境条件下。针对代理者在转换签名过程中可以获得签名者消息的缺陷，基于盲签名机制，通过改进本文提出的无证书代理重签名方案，提出了无证书盲代理重签名方案，并在标准模型下证明了方案的安全性。在标准模型下该方案在假设NGBDH问题和Many-DH问题中，能抵抗适应性选择消息攻击的存在伪造性。更多还原

【Abstract】 Proxy re-signature is a special kind of digital signature，allows a semi-trustedproxy with some informationto transform a delegatee’s signature into a delegator’ssignature on the same message. The proxy， however, cannot generate arbitrarysignatures on behalf of either the delegatee or the delegator. Due to thetransformation function，proxy re-signature schemes are very useful and can beapplied in many applications， including simplifying certificate management，providing a proof for a path that has been taken，constructing a Digital RightsManagement (DRM) interoperable system.Existence of the complexity of the problem of key escrow and certificatemanagement for proxy re-signature，a new type of public key cryptosystem calledCertificateless Public Key Cryptography was introduced by AI-Riyami andPaterson．In Certificateless Public Key Cryptography，the Key Generation Center cannot get access to any user’s private key． The Certificateless Public KeyCryptography to solve the complex problem of key escrow and certificatemanagement, more efficient than traditional PKI public key cryptography system,security identity-based public key cryptosystem. The certificateless proxyre-signatures scheme based on standard model is proposed using of bilinear mappingtechnology and standard model framework proposed by Waters，finally，the securityof the scheme is proven．Under the standard model, it proves that it is provablesecure against adaptive chosen message attack under the hardness assumptions ofNGBDH problem and Many-DH problem. Therefore, the certificate public keycryptosystem can be applied to environmental conditions that require low bandwidthand low processing capacity of mobile devices, wireless sensor networks.Defect of the proxy in the process of conversion signature signer can get themessage， using the proposed certificateless proxy re-signature scheme， weproposed certificateless blind proxy re-signatures extended using the idea of blindsignature， and in the standard model to prove that the scheme security. Under thestandard model，it proves that it is provable secure against adaptive chosen messageattack under the hardness assumptions of NGBDH problem and Many-DH problem.更多还原