Cryptanalysis and improvement of Petersen-Michels signcryption scheme
نویسندگان
چکیده
Petersen and Michels showed that Zheng’s signcryption schemes lose confidentiality to gain nonrepudiation. They also proposed another signcryption scheme modified from a signature scheme giving message recovery. The authors show that the Petersen-Michels scheme still violates the unforgeability property, and propose an improvement that overcomes the security leak inherent in the scheme. The improvement is as efficient as previous signcryption schemes with respect to both the computational cost and the communication overhead.
منابع مشابه
Cryptanalysis and improvement of signcryption schemes
In 1997, two new schemes for authenticated encryption, called signcryption, have been proposed by Zheng. In this paper we point out a serious problem with these schemes. In fact, the way to gain nonrepudiation violates the confidentiality. Moreover, we compare the schemes to previously known authenticated encryption schemes, which were not mentioned by Zheng. Finally we outline a solution that ...
متن کاملCryptanalysis and Improvement of Selvi et al.'s Identity-Based Threshold Signcryption Scheme
Signcryption can realize the function of encryption and signature in a reasonable logic step, which can lower computational costs and communication overheads. In 2008, S. S. D. Selvi et al. proposed an identitybased threshold signcryption scheme. In this paper, we show that the threshold signcryption scheme of S. S. D. Selvi et al. is vulnerable if the attacker can replaces the group public key...
متن کاملOn the Security of ID Based Signcryption Schemes
A signcryption scheme is secure only if it satisfies both the confidentiality and the unforgeability properties. All the ID based signcryption schemes presented in the standard model till now do not have either the confidentiality or the unforgeability or both of these properties. Cryptanalysis of some of the schemes have been proposed already. In this work, we present the security attack on ‘S...
متن کاملCryptanalysis of an Identity Based Signcryption Scheme without Random Oracles
Signcryption is a cryptographic primitive that aims at providing confidentiality and the sender’s identity authentication in a logic step, at lower computational costs and communication overheads than sign-then-encrypt way. Recently, Yu et al.[1] proposed a new identity based signcryption scheme in standard model. However, in this paper, we show that the scheme still has some security weaknesse...
متن کاملCryptanalysis and Improvement of a Multi-Receiver Generalized Signcryption Scheme
Generalized signcryption (GSC) scheme can adaptively work as an encryption scheme, a signature scheme or a signcryption scheme with only one algorithm. It is very suitable for storage-constrained environments. In this paper, we analyze a multi-receiver GSC scheme, and show that it cannot achieve indistinguishability-adaptive chosen ciphertext attack (IND-CCA2) secure in the pure encryption mode...
متن کامل