Abstract

Blind signcryption is used to maintain the anonymity and privacy of the sender from other participants in an unsecured public network. It has vast applications for privacy related mechanisms such as electronic voting and electronic auction systems. Various blind signcryption schemes were introduced in the last two decades, depending upon the computational cost and the level of security. Some of these schemes were proven to be insecure and need further improvement. We analyzed a recently proposed blind signcryption scheme for multiple digital documents based on a hyperelliptic curve. Our cryptanalysis shows that the proposed blind signcryption scheme is not secure against the existing attacks. An adversary, with the knowledge of public parameters, can modify the signcrypted text of his choice. The successful cryptanalysis shows that the proposed scheme is unable to provide the security attributes of authentication and message integrity. To overcome the security flaws, we propose a modified version of this scheme.

摘要

盲签密用于在不安全的公共网络中维护发送者的匿名性和隐私。它在隐私相关机制方面有着广泛的应用，例如电子投票和电子拍卖系统。在过去的二十年中，根据计算成本和安全级别，引入了各种盲签密方案。其中一些计划被证明是不安全的，需要进一步改进。我们分析了最近提出的基于超椭圆​​曲线的多数字文档盲签密方案。我们的密码分析表明，所提出的盲签密方案对于现有的攻击是不安全的。知道公共参数的对手可以修改他选择的签密文本。成功的密码分析表明，所提出的方案无法提供身份验证和消息完整性的安全属性。为了克服安全缺陷，我们提出了该方案的修改版本。