An improved and provable self-certified digital signature scheme with message recovery

This paper presents a self-certified digital signature scheme with message recovery that is proven to be secure. So far, many schemes of this kind have been proposed to keep message secret in the transmission. But Zhang et al. has proposed the man-in-middle attack to Shao's self-certified signature scheme, which is based on discrete logarithm. The attacker can make a new signature by using an old one, but the reason of such man-in-middle attack was not referred. We present the scheme of Yoon et al., which is also based on discrete logarithm, that cannot resist man-in-middle attack either, give the analysis of the attack, and propose a new scheme. The proposed scheme can resist forgery attack in the random oracle model and avoid message leakage, the man-in-middle attack, and meanwhile has several security characters. Compared with some self-certified schemes, our scheme is the best because of the time cost. Copyright (c) 2013 John Wiley & Sons, Ltd.