高级检索

    Aitps:基于非对称模格问题的两方协同签名方案

    Aitps: A Two-Party Signature Scheme from Asymmetry Module Lattice Problems

    • 摘要: 物联网和区块链等技术的兴起和发展,使得多方协同签名协议重新受到了关注. 多方协同签名是一种特殊的数字签名,要求多个用户进行交互后共同对一个消息产生合法的签名,以达到认证的目的. 优点在于相比起每个用户分别进行签名可以缩短尺寸,同时使用分布式的方法,任何一方都无法独自进行签名,防范了因为单个用户的密钥丢失或被劫持而导致被冒充身份的隐患. 另一方面,量子计算机的进展对传统的公钥密码方案构成了潜在的威胁,美国国家标准与技术研究院(National Institute of Standards and Technology,NIST)在2016年启动抗量子密码(post-quantum cryptography,PQC)的国际标准征集项目,并于2022年7月确定了被选为标准的算法. 同时,基于其入选的数字签名方案(例如CRYSTALS-Dilithium)的协同签名方案也已经陆续出现. 2019 年,中国密码学会举办了全国密码算法设计竞赛,其中公钥组获得一等奖的Aigis-sig签名方案采用了与Dilithium类似的结构. 基于Aigis-sig数字签名方案设计了一种两方协同签名方案,称之为Aitps,并根据其提供的参数进行了实例化和对比,得到了相比已有的所有基于Dilithium的两方协同签名方案更优的密钥和签名大小,例如在同等的安全强度下签名尺寸可缩减 20% 以上. 此外,该方案也可以扩展为多方协同签名.

       

      Abstract: Recent years, with the advancement of the IoT and blockchain, multi-party signature protocols have received renewed attention. Multi-party signature is a special digital signature that requires users to interact with each other to jointly generate a signature for a message and achieve the authentication. Compared with each user signing respectively, the advantage is that the key size can be greatly decreased, and every party cannot get a legal signature only by itself, which can be used to prevent the danger of being impersonated when user’s key is lost or hijacked. On the other hand, the progress of quantum computers poses a potential threat to the traditional public key cryptography scheme, the PQC(post-quantum cryptography) project was organized by the NIST(National Institute of Standards and Technology) in the US since 2016, and it determined the algorithm that was standardized in July 2022. At the same time, the multi-party signature based on its candidate digital signature schemes (such as CRYSTALS-Dilithium) also appeared. Chinese Association for Cryptologic Research(CACR) also held a national cryptographic algorithm design competition in 2019, Aigis-sig, which is the first prize signature algorithm, adopts the similar structure with Dilithium. In this paper, Aitps is proposed, which is a two-party signature based on Aigis-sig. Compared with the existing Dilithium-based two-party signatures, Aitps has better key sizes and signature sizes. For example, the signature sizes can be reduced by more than 20% at the same security level. Lastly, Aitps can also be extended to multi-party signature.

       

    /

    返回文章
    返回