加权门限SM2签名方案
CSTR:
作者:
作者单位:

作者简介:

通讯作者:

中图分类号:

TP309

基金项目:

国家重点研发计划(2022YFB2701500); 国家自然科学基金(61872229, U19B2021, 62202375, 62202339); 陕西省杰出青年基金(2022JC-47); 陕西省科学技术协会青年人才托举计划(20220134); 陕西省重点研发计划重点产业创新链(群)(2024GX-ZDCYL-01-09, 2024GX-ZDCYL-01-15); 陕西省教育厅科学研究项目(22JK0557)


Weighted Threshold SM2 Signature Scheme
Author:
Affiliation:

Fund Project:

  • 摘要
  • |
  • 图/表
  • |
  • 访问统计
  • |
  • 参考文献
  • |
  • 相似文献
  • |
  • 引证文献
  • |
  • 资源附件
  • |
  • 文章评论
    摘要:

    随着物联网和移动互联网技术的发展, 各类移动终端设备被接入互联网中. 当对移动终端设备进行识别和认证时, 通常需要验证其提交的数字签名. 但移动终端设备本身的计算能力受限, 往往采用软件模块来保存密钥至本地或者智能芯片中, 增加了密钥泄露的风险. 现实应用中多采用门限数字签名来抵抗这一攻击, 借助多方合作来分散风险, 提升设备可用性. SM2数字签名算法是我国自主研发的椭圆曲线公钥密码算法, 于2016年成为国家密码标准, 被广泛应用于政府部门、金融机构、电子认证服务提供商等领域. 设计高可用的门限SM2数字签名备受关注, 但这类方案的构造依旧较少, 同时也缺乏对参与者权重的考量. 因此, 提出更加灵活的加权门限SM2数字签名方案. 在加权门限SM2数字签名中签名者分配不同权重, 之后多个签名者共同生成一个有效的签名. 在方法上, 基于中国剩余定理的加权门限秘密共享将SM2数字签名的秘钥进行分割. 参与者不只是单一的达到门限值就可以得到签名密钥, 而需要通过计算参与者权重之和, 并达到相应的秘密门限值t和重构门限T, 才能了解到密钥的部分信息或者恢复出签名密钥. 在秘密分割时, 对SM2数字签名算法的签名私钥进行变形, 以完成签名阶段对SM2密钥进行求逆的这一操作. 最后, 将所提方案与门限SM2签名以及联合SM2签名等已有工作进行分析比较, 该算法在提升SM2签名方案功能性的同时进一步降低了计算开销.

    Abstract:

    As the Internet of Things and mobile Internet technologies continue to advance, a wide range of mobile devices are connected to the Internet. To identify and authenticate these devices, it is necessary to verify the digital signatures they submit. However, many mobile devices have limited computing power and typically use software modules to store keys locally or on smart chips, which increases the risk of key exposure. To avoid this risk, threshold signatures are commonly employed in real-world applications. These signatures rely on multi-party cooperation to decentralize risks and enhance device availability. The SM2 digital signature algorithm, an elliptic curve public key cryptographic algorithm developed independently by China, was adopted as the national cryptography standard in 2016. It finds extensive use in various sectors including government agencies, financial institutions, and electronic authentication service providers. While there has been interest in constructing SM2 threshold signatures with high availability, there are still limited schemes available, and participant weights have not been adequately considered. This study proposes a flexible SM2 weighted threshold signature scheme. In this scheme, signers are assigned different weights, and multiple signers collaborate to generate a valid signature. The key of the SM2 digital signature is divided based on the weighted threshold secret sharing of the Chinese remainder theorem. Participants do not acquire a signing key only by meeting the threshold value. They have to meet the corresponding secret threshold t and the reconstruction threshold T by calculating the sum of the weights of participants to obtain part of the key information or recover the signing key. During secret segmentation, the private signing key of the SM2 digital signature algorithm is transformed to complete the inversion of the SM2 key during the signing stage. Finally, the proposed scheme is compared with other schemes such as SM2 threshold signatures and joint SM2 signatures. The proposed scheme not only reduces computational overhead but also enhances the functionality of the SM2 signature.

    参考文献
    相似文献
    引证文献
引用本文

唐长虹,赵艳琦,杨晓艺,冯琦,禹勇.加权门限SM2签名方案.软件学报,,():1-13

复制
分享
文章指标
  • 点击次数:
  • 下载次数:
  • HTML阅读次数:
  • 引用次数:
历史
  • 收稿日期:2024-01-04
  • 最后修改日期:2024-04-03
  • 录用日期:
  • 在线发布日期: 2024-12-31
  • 出版日期:
文章二维码
您是第位访问者
版权所有:中国科学院软件研究所 京ICP备05046678号-3
地址:北京市海淀区中关村南四街4号,邮政编码:100190
电话:010-62562563 传真:010-62562533 Email:jos@iscas.ac.cn
技术支持:北京勤云科技发展有限公司

京公网安备 11040202500063号