摘要
Abstract
The security of the digital signature algorithm can be guaranteed by mathematical theory,but the security of using it is not completely solved,and how to store the signature private key securely is a difficult problem,particularly in protecting and using signature private keys in mobile terminals.This study designs a signature scheme that can be signed by users independently,with high performance and guaranteed security of the signature private key.The scheme is based on SOTP technology to encrypt the signature private key,therefore,the user's private key is always in the encrypted protection state,and the user can directly sign with the encrypted private key when signing,and without decrypting the private key.Meanwhile,the private key protection is not fixed,SOTP technology provides a random number for encrypting the private key,the user can update the random number regularly or according to the demand from time to time,and the attacker cannot use the analysis means to obtain information of the private key.In this scheme,users can autonomously sign and others verify by using a process almost identical to the SM2 signature algorithm.This study also provides a complete correctness proof and a security proof for the designed scheme.The related functional and performance analysis shows that the proposed scheme can effectively protect SM2 signature private keys.This scheme ensures the signature efficiency and protects the signature private key,and has a wide application prospect of private key protection in mobile terminals.关键词
SM2签名算法/Z算法/私钥保护/数字签名/随机预言机Key words
SM2 signature algorithm/Z algorithm/key protection/digital signature/random oracle分类
信息技术与安全科学
