Security models for certificateless signature schemes revisited

Certificateless cryptography eliminates the need of certificates in the Public Key Infrastructure and solves the inherent key escrow problem in the ID-based cryptography. In this paper, we point out security pitfalls on the restrictions of an adversary’s final output in security models of certificateless signature schemes by demonstrating key replacement attacks on three certificateless signature schemes in the different security models.