Skip to main content
placeholder image

Security pitfalls of an efficient threshold proxy signature scheme for mobile agents

Journal Article


Download full-text (Open Access)

Abstract


  • A (t,n)(t,n) threshold proxy signature scheme enables an original signer to delegate his/her signing power to n proxy signers such that any t or more proxy signers can sign messages on behalf of the original signer, but t−1t−1 or less of them cannot produce a valid proxy signature. Based on the RSA cryptosystem, Hong proposed an efficient (t,n)(t,n) threshold proxy signature for mobile agents. Cai et al. found that the scheme due to Hong is proxy-unprotected, meaning that the original signer can generate a valid proxy signature by himself. However, it is unclear whether the scheme can be used in reality after fixing the security problem discovered by Cai et al. In this letter, we provide a detailed analysis on Hongʼs scheme and show that the scheme fails to achieve the properties of secrecy, proxy protected, undeniability, identifiability and even time constraint and thus adopted of this efficient construction in practice is not recommended.

UOW Authors


  •   Yu, Yong (external author)
  •   Mu, Yi (external author)
  •   Susilo, Willy
  •   Au, Man Ho Allen (external author)

Publication Date


  • 2014

Citation


  • Yu, Y., Mu, Y., Susilo, W. & Au, M. (2014). Security pitfalls of an efficient threshold proxy signature scheme for mobile agents. Information Processing Letters, 114 (1-2), 5-8.

Scopus Eid


  • 2-s2.0-84888290222

Ro Full-text Url


  • http://ro.uow.edu.au/cgi/viewcontent.cgi?article=2809&context=eispapers

Ro Metadata Url


  • http://ro.uow.edu.au/eispapers/1800

Number Of Pages


  • 3

Start Page


  • 5

End Page


  • 8

Volume


  • 114

Issue


  • 1-2

Abstract


  • A (t,n)(t,n) threshold proxy signature scheme enables an original signer to delegate his/her signing power to n proxy signers such that any t or more proxy signers can sign messages on behalf of the original signer, but t−1t−1 or less of them cannot produce a valid proxy signature. Based on the RSA cryptosystem, Hong proposed an efficient (t,n)(t,n) threshold proxy signature for mobile agents. Cai et al. found that the scheme due to Hong is proxy-unprotected, meaning that the original signer can generate a valid proxy signature by himself. However, it is unclear whether the scheme can be used in reality after fixing the security problem discovered by Cai et al. In this letter, we provide a detailed analysis on Hongʼs scheme and show that the scheme fails to achieve the properties of secrecy, proxy protected, undeniability, identifiability and even time constraint and thus adopted of this efficient construction in practice is not recommended.

UOW Authors


  •   Yu, Yong (external author)
  •   Mu, Yi (external author)
  •   Susilo, Willy
  •   Au, Man Ho Allen (external author)

Publication Date


  • 2014

Citation


  • Yu, Y., Mu, Y., Susilo, W. & Au, M. (2014). Security pitfalls of an efficient threshold proxy signature scheme for mobile agents. Information Processing Letters, 114 (1-2), 5-8.

Scopus Eid


  • 2-s2.0-84888290222

Ro Full-text Url


  • http://ro.uow.edu.au/cgi/viewcontent.cgi?article=2809&context=eispapers

Ro Metadata Url


  • http://ro.uow.edu.au/eispapers/1800

Number Of Pages


  • 3

Start Page


  • 5

End Page


  • 8

Volume


  • 114

Issue


  • 1-2