J4

• Original Articles • Previous Articles     Next Articles

Security analysis of Chang et al.'s signature scheme with message recovery

FU Xiao-tong;ZHANG Ning;XIAO Guo-zhen

  

  1. (State Key Lab. of Integrated Service Networks, Xidian Univ., Xi′an 710071, China)
  • Received:1900-01-01 Revised:1900-01-01 Online:2005-12-20 Published:2005-12-20

Abstract: Recently, C.C.Chang and Y.F.Chang have proposed a new digital signature scheme with message recovery. Neither one-way hash functions nor message redundancy schemes are used in their scheme in order to reduce the computational cost. However, it is found that their signature scheme is not as secure as they clamied, in fact. In this paper, two kinds of forgery attacks are proposed to show that an attacker can forge valid signatures on any uncontrolled messages. To overcome these attacks, the one-way hash functions and the message redundancy schemes may still be used.

Key words: digital signature, message recovery, cryptanalysis, forgery attack

CLC Number: 

  • TN918.1