70 likes | 165 Views
Key Replacement Attack on a Certificateless Signature Scheme. Zhenfeng Zhang and Dengguo Feng Presenter: Yu-Chi Chen. Outline. Yap-Heng-Goi Certificateless Signature Scheme Public Key Replacement Attack on the Yap-Heng-Goi Scheme Remark. CL-PKC. CL-PKC is better than PKC and ID-PKC.
E N D
Key Replacement Attack on a Certificateless Signature Scheme Zhenfeng Zhang and Dengguo Feng Presenter: Yu-Chi Chen
Outline Yap-Heng-Goi Certificateless Signature Scheme Public Key Replacement Attack on the Yap-Heng-Goi Scheme Remark
CL-PKC • CL-PKCis better than PKCand ID-PKC. • CL-PKC does not need the certificate for identity and the management about certificate. • CL-PKC solves the key escrow problem in ID-PKC. • KGC only generatesthe user’s partial-private-key.
Yap-Heng-Goi scheme Sign: Verify:
An Attack on the Yap-Heng-Goi Scheme Replacement attack: An attacker uses public key replacement to generate a forged signature without knowing the master-key. The forged signature is valid via the verification.
An Attack on the GS Scheme The attacker chooses a randomandreplaces A's public key with the value It is able to generate a signature This signature (U,V) can be valid via Verify.
Remark. For example for signature, Remarks of the public key replacement attack.