Security analysis of the unrestricted identity-based aggregate signature scheme

Kwangsu Lee, Dong Hoon Lee

Research output: Contribution to journalArticlepeer-review

2 Citations (Scopus)


Aggregate signatures allow anyone to combine different signatures signed by different signers on different messages into a short signature. An ideal aggregate signature scheme is an identity-based aggregate signature (IBAS) scheme that supports full aggregation since it can reduce the total transmitted data by using an identity string as a public key and anyone can freely aggregate different signatures. Constructing a secure IBAS scheme that supports full aggregation in bilinear maps is an important open problem. Recently, Yuan et al. proposed such a scheme and claimed its security in the random oracle model under the computational Diffie-Hellman assumption. In this paper, we show that there is an efficient forgery on their IBAS scheme and that their security proof has a serious flaw.

Original languageEnglish
Article numbere0128081
JournalPloS one
Issue number5
Publication statusPublished - 2015 May 18

Bibliographical note

Publisher Copyright:
© 2015 Lee, Lee. This is an open access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.

ASJC Scopus subject areas

  • General Biochemistry,Genetics and Molecular Biology
  • General Agricultural and Biological Sciences
  • General

Cite this