密码分析和基于RSA多重数字签名方案的改进外文翻译.docx

英文资料及翻译 英文资料： (It comes from Carlton R.Davis.IPSEC:Securing VPNS.北京：清华大学出版社，2002) Cryptanalysis and Improvement of Digital Multisignature Scheme Based on RSA SU Li (粟　栗) CUI Guohua (崔国华) CHEN Jing (陈　晶)　YUAN Jun (袁　隽) School of Computer Science and Technology, Hua zhong University of Science and Technology, Wuhan 430074, China Abstract Zhang et a.l proposed a sequential multisignature scheme based on RSA. The scheme has advantages of low computation and communication costs, and so on. However, we find a problem in their scheme that the verifier can not distinguish whether the multi-signature is signed by all the signers of the group or only by the last signer. Thus, any single signature created by the last signer can be used as a multisignature created by the whole group members. This paper proposes an improved scheme that can overcome the defect. In the new scheme, the identity messages of all the signers are added in the multisignature and used in verification phase, so that the verifier can know the signature is generated by which signers. Performance analysis shows that the proposed scheme costs less computation than the original scheme in both signature and verification phases. Furthermore, each partial signature is based on the signer’s identity certificate, which makes the scheme more secure. Key words:　Digital multisignature; Sequential multisignature; RSA cryptosystem; Cryptanalysis Introduction Multisignature is a joint signature generated by a group of signers. The group has a security policy that requires a multisignature to be signed by all group members with the knowledge of multiple private keys. Digital multisignatures should have several basic properties [1]: (1)Multisignatures are generated by multiple group members with the knowledge of multiple private keys. (2) Multisignatures can be verified easily by using the group public key without knowing each signer s public key. (3) It is computationally in feasible to generate the group signature wit