How to construct identity-based signatures without the key escrow problem

Tsz Hon Yuen; Willy Susilo; Yi Mu

doi:10.1007/s10207-010-0110-5

How to construct identity-based signatures without the key escrow problem

Tsz Hon Yuen, Willy Susilo, Yi Mu

Research output: Contribution to journal › Article › Research › peer-review

34 Citations (Scopus)

Abstract

The inherent key escrow problem is one of the main reasons for the slow adoption of identity-based cryptography. The existing solution for mitigating the key escrow problem is by adopting multiple Private Key Generators (PKGs). Recently, there was a proposal that attempted to reduce the trust of the PKG by allowing a malicious PKG to be caught if he reveals the user's identity-based private key illegally. Nonetheless, the proposal does not consider that the PKG can simply decrypt the ciphertext instead of revealing the private key itself (in the case of identity-based encryption schemes). The aim of this paper is to present an escrow-free identity-based signature (IBS) scheme, in which the malicious PKG will be caught if it releases a signature on behalf of the user but signed by itself. We present a formal model to capture such a scheme and provide a concrete construction.

Original language	English
Pages (from-to)	297-311
Number of pages	15
Journal	International Journal of Information Security
Volume	9
Issue number	4
DOIs	https://doi.org/10.1007/s10207-010-0110-5
Publication status	Published - 2010
Externally published	Yes

Keywords

Certificate-based signatures
Certificateless signatures
Identity-based signatures
Key escrow
Self-certificated signatures

Access to Document

10.1007/s10207-010-0110-5

Cite this

@article{befd3c5734284fdeb71313cbf31fb36b,

title = "How to construct identity-based signatures without the key escrow problem",

abstract = "The inherent key escrow problem is one of the main reasons for the slow adoption of identity-based cryptography. The existing solution for mitigating the key escrow problem is by adopting multiple Private Key Generators (PKGs). Recently, there was a proposal that attempted to reduce the trust of the PKG by allowing a malicious PKG to be caught if he reveals the user's identity-based private key illegally. Nonetheless, the proposal does not consider that the PKG can simply decrypt the ciphertext instead of revealing the private key itself (in the case of identity-based encryption schemes). The aim of this paper is to present an escrow-free identity-based signature (IBS) scheme, in which the malicious PKG will be caught if it releases a signature on behalf of the user but signed by itself. We present a formal model to capture such a scheme and provide a concrete construction.",

keywords = "Certificate-based signatures, Certificateless signatures, Identity-based signatures, Key escrow, Self-certificated signatures",

author = "Yuen, \{Tsz Hon\} and Willy Susilo and Yi Mu",

year = "2010",

doi = "10.1007/s10207-010-0110-5",

language = "English",

volume = "9",

pages = "297--311",

journal = "International Journal of Information Security",

issn = "1615-5262",

publisher = "Springer",

number = "4",

}

TY - JOUR

T1 - How to construct identity-based signatures without the key escrow problem

AU - Yuen, Tsz Hon

AU - Susilo, Willy

AU - Mu, Yi

PY - 2010

Y1 - 2010

N2 - The inherent key escrow problem is one of the main reasons for the slow adoption of identity-based cryptography. The existing solution for mitigating the key escrow problem is by adopting multiple Private Key Generators (PKGs). Recently, there was a proposal that attempted to reduce the trust of the PKG by allowing a malicious PKG to be caught if he reveals the user's identity-based private key illegally. Nonetheless, the proposal does not consider that the PKG can simply decrypt the ciphertext instead of revealing the private key itself (in the case of identity-based encryption schemes). The aim of this paper is to present an escrow-free identity-based signature (IBS) scheme, in which the malicious PKG will be caught if it releases a signature on behalf of the user but signed by itself. We present a formal model to capture such a scheme and provide a concrete construction.

AB - The inherent key escrow problem is one of the main reasons for the slow adoption of identity-based cryptography. The existing solution for mitigating the key escrow problem is by adopting multiple Private Key Generators (PKGs). Recently, there was a proposal that attempted to reduce the trust of the PKG by allowing a malicious PKG to be caught if he reveals the user's identity-based private key illegally. Nonetheless, the proposal does not consider that the PKG can simply decrypt the ciphertext instead of revealing the private key itself (in the case of identity-based encryption schemes). The aim of this paper is to present an escrow-free identity-based signature (IBS) scheme, in which the malicious PKG will be caught if it releases a signature on behalf of the user but signed by itself. We present a formal model to capture such a scheme and provide a concrete construction.

KW - Certificate-based signatures

KW - Certificateless signatures

KW - Identity-based signatures

KW - Key escrow

KW - Self-certificated signatures

UR - http://www.scopus.com/inward/record.url?scp=77955090387&partnerID=8YFLogxK

U2 - 10.1007/s10207-010-0110-5

DO - 10.1007/s10207-010-0110-5

M3 - Article

AN - SCOPUS:77955090387

SN - 1615-5262

VL - 9

SP - 297

EP - 311

JO - International Journal of Information Security

JF - International Journal of Information Security

IS - 4

ER -

How to construct identity-based signatures without the key escrow problem

Abstract

Keywords

Access to Document

Other files and links

Cite this