Affiliation:
1. College of Computer Science and Technology, Ocean University of China , Qingdao, Shandong, 266000 , China
Abstract
Abstract
Recently, Qiao et al. proposed a novel construction of certificateless aggregate signature (CLAS) scheme to ensure the integrity and authenticity of medical data in healthcare wireless medical sensor networks (HWMSNs). They first created an underlying certificateless signature (CLS) scheme, and then proposed a CLAS scheme from the underlying CLS scheme by adding an aggregation algorithm and a verification algorithm. In this paper, we point out that their CLS scheme is insecure because the Type I adversary can forge valid signatures. That is, the unforgeability is not actually captured by their CLS scheme. Finally, we map our cryptanalysis to the practical application. That is, in the practical application of HWMSNs, the attacker can launch real attack to their CLS scheme using our cryptanalysis to forge signatures. Therefore, Qiao et al.’s CLS scheme can be totally broken.
Funder
Key Research and Development Program of Shandong Province, China
State Grid Shandong Electric Power Company Technology Project
Publisher
Oxford University Press (OUP)
Reference11 articles.
1. Wireless body sensor network using medical implant band;Yuce;J Med Syst,2007
2. Security issues in healthcare applications using wireless medical sensor networks: a survey;Kumar;Sensors,2011
3. A certificateless aggregate signature scheme for healthcare wireless sensor network;Kumar;Sustain Comput Informat Syst,2018
4. New certificateless aggregate signature scheme for healthcare multimedia social network on cloud environment;Wu;Security Commun Netw,2018
5. A large-scale concurrent data anonymous batch verification scheme for mobile healthcare crowd sensing;Liu;IEEE Internet Things J,2019