Scheduled System Maintenance:
On May 6th, system maintenance will take place from 8:00 AM - 12:00 PM ET (12:00 - 16:00 UTC). During this time, there may be intermittent impact on performance. We apologize for the inconvenience.
By Topic

Server-aided digital signature protocol based on password

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

The purchase and pricing options are temporarily unavailable. Please try again later.
3 Author(s)
Yong-Zhong He ; Inst. of Software, Chinese Acad. of Sci., Beijing, China ; Chuan-Kun Wu ; Deng-Guo Feng

Digital signature is a cryptographic mechanism widely used in secure communications. Although there are many digital signature schemes with firm mathematical foundations, one of the biggest concerns is how to protect the private keys from disclosure in applications. To counter this problem, we suggest splitting the signature private key into two parts and storing in two well-protected servers, and the client may get signatures through the protocol SADS proposed in this paper. With SADS, the client only needs to provide a password to get a message to be signed with the help of the two severs. The private key is not exposed if only one of the servers is compromised or misused by the server administrator, which greatly decreases the possibility of the corruption of a signature private key and facilitates the mobility of the signing services. Furthermore, various signing policies can be enforced in the servers, such as revocation of the private key, delegation of signature rights, signature with tune constraints, content-sensitive signatures.

Published in:

Security Technology, 2005. CCST '05. 39th Annual 2005 International Carnahan Conference on

Date of Conference:

11-14 Oct. 2005