Identity-Based Multi-Signcryption Scheme without Random Oracles

“…Namely, the length of public parameters of the new scheme is only about one half of that of the schemes in [23,24,26,27]. From this point of view, a shorter public parameter makes the new scheme more suitable for low storage requirement of applications.…”

“…The symbol × means it is vulnerable to the attack while √ indicates that it can resist the attack. Note that the scheme in [23,24,26,27] can not be regarded as secure since they suffer either the IND-CCA attack or the IND-CCA attack. The new scheme achieves both IND-CCA security and EUF-CMA security.…”

“…We compare the security and the performance efficiency of our scheme to those of the known ID-based signcryption without random oracles in [23,24,26,27]. M G , E G , M G T , E G T , I G T , andê, denote the multiplication in G, the exponentiation in G, the multiplication in G T , the exponentiation in G T , the inversion in G T and the pairing operation, respectively.…”

“…Assume that the output length of the secure hash functions used in the schemes are same, that is, n u = n m = n. 2n + 5 group elements are required as public parameters in [23,24,26,27] while only n + 6 elements are needed in our scheme. Namely, the length of public parameters of the new scheme is only about one half of that of the schemes in [23,24,26,27].…”

“…Unfortunately, recent cryptanalysis due to Li et al [25] shows that Jin et al's scheme [24] suffers from the indistinguishability against adaptive chosen ciphertexts attack and existential unforgeability against adaptive chosen messages attack. Zhang et al [26] also built another new scheme, but Li et al [27] found that Zhang et al's scheme does not have IND-CPA security and they proposed an improvement claiming it to achieve both IND-CCA2 and EUF-CMA security. However, a recent analysis due to Selvi et al [28] concluded that Li et al's scheme reaches neither IND-CCA2 property nor EUF-CMA property.…”

A Novel Identity-Based Signcryption Scheme in the Standard Model

“…Namely, the length of public parameters of the new scheme is only about one half of that of the schemes in [23,24,26,27]. From this point of view, a shorter public parameter makes the new scheme more suitable for low storage requirement of applications.…”

“…The symbol × means it is vulnerable to the attack while √ indicates that it can resist the attack. Note that the scheme in [23,24,26,27] can not be regarded as secure since they suffer either the IND-CCA attack or the IND-CCA attack. The new scheme achieves both IND-CCA security and EUF-CMA security.…”

“…We compare the security and the performance efficiency of our scheme to those of the known ID-based signcryption without random oracles in [23,24,26,27]. M G , E G , M G T , E G T , I G T , andê, denote the multiplication in G, the exponentiation in G, the multiplication in G T , the exponentiation in G T , the inversion in G T and the pairing operation, respectively.…”

“…Assume that the output length of the secure hash functions used in the schemes are same, that is, n u = n m = n. 2n + 5 group elements are required as public parameters in [23,24,26,27] while only n + 6 elements are needed in our scheme. Namely, the length of public parameters of the new scheme is only about one half of that of the schemes in [23,24,26,27].…”

“…Unfortunately, recent cryptanalysis due to Li et al [25] shows that Jin et al's scheme [24] suffers from the indistinguishability against adaptive chosen ciphertexts attack and existential unforgeability against adaptive chosen messages attack. Zhang et al [26] also built another new scheme, but Li et al [27] found that Zhang et al's scheme does not have IND-CPA security and they proposed an improvement claiming it to achieve both IND-CCA2 and EUF-CMA security. However, a recent analysis due to Selvi et al [28] concluded that Li et al's scheme reaches neither IND-CCA2 property nor EUF-CMA property.…”

A Novel Identity-Based Signcryption Scheme in the Standard Model

ID Based Signcryption Scheme in Standard Model

A typology of secure multicast communication over 5 G/6 G networks