Certificateless aggregate signature (CLAS) schemes have been widely applied in resource-constrained wireless mobile networks, because they could not only realize batch validation but also solve the certificate management and key escrow problems. It was shown that a certificateless aggregate signature in an anonymous roaming authentication scheme was vulnerable to the signature forge attack. To address the issue, a new secure and efficient certificateless aggregate sig-nature scheme was presented, which required no bilinear pairing operations. And then the security of the scheme under the ECDLP assumption in the random oracle model was proved. Finally the performance of proposed scheme was eva-luated. Compared with the original scheme, the proposal is more secure and the total computational cost is greatly re-duced .%无证书聚合签名在实现批验证的同时解决了证书管理和密钥托管问题,在资源受限的无线移动网络中得到广泛应用.首先对一个无线匿名漫游认证方案中的无证书聚合签名进行了安全性分析,指出该方案不能抵抗签名伪造攻击,并提出了一种新的安全高效的无证书聚合签名方案.新方案不需要双线性对操作,在随机预言机模型下证明方案是安全的.与原方案相比,所提方案在提高安全性的同时大大降低了计算开销.
展开▼
