Abstract
Purchase PDF (145 K)
E-mail Article
Add to my Quick Links
Cited By in Scopus (0)
Purchase PDF (117 K)
doi:10.1016/j.jcss.2006.01.001 
Copyright © 2006 Elsevier Inc. All rights reserved.
Security of the design of time-stamped signatures
Zuhua Shao
Received 9 October 2004;
References and further reading may be available for this article. To view references and further reading you must purchase this article.
Abstract
To ensure integrity and originality of digital information, digital signatures were proposed to provide both authority and non-repudiation. However, without an authenticated time-stamp, we can neither trust signed documents when the signers' signature key was lost, stolen, or accidentally compromised, nor solve the cases when the signer himself repudiates the signing, claiming that has accidentally lost his signature key. To withstand forward forgery suffered by linking schemes and to reduce verification cost, Sun et al. proposed four time-stamped signature schemes that are based on absolute temporal authentication. Though Sun et al. claimed that these schemes are quite secure against the forward forgery, we find that they suffered from substitution attacks, by which the signer can backward/forward forge signatures and the time-stamping service can also forge signatures. Finally, we also propose four time-stamped signature schemes to overcome these security flaws. Moreover, the proposed new schemes are more efficient than the Sun et al. schemes.
Keywords: Authentication; Time-stamping; Digital signatures; Substitution attack
