不需双线性对的基于身份的认证密钥协商协议

doi:10.3969/j.issn.1671-1122.2016.10.004

信息网络安全 ›› 2016, Vol. 16 ›› Issue (10): 21-27.doi: 10.3969/j.issn.1671-1122.2016.10.004

不需双线性对的基于身份的认证密钥协商协议

矢敏¹, 叶伟伟²(), 欧庆于²

1. 91551部队,江西九江 332006
2. 海军工程大学信息安全系,湖北武汉 430033

收稿日期:2016-07-28 出版日期:2016-10-31 发布日期:2020-05-13
作者简介:
作者简介：矢敏（1981—）,男,江西,高级工程师,硕士,主要研究方向为信息安全;叶伟伟（1991—）,男,重庆,硕士研究生,主要研究方向为密码理论与应用;欧庆于（1978—）,男,江西,副教授,硕士,主要研究方向为密码芯片设计。
基金资助:
国家自然科学基金[6110042,6120238]

Identity-based Authenticated Protocol without Bilinear Pairing

Min SHI¹, Weiwei YE²(), Qingyu OU²

1. 91551 Troops of PLA, Jiujiang Jiangxi 332006, China
2. Department of Information Security, Naval University of Engineering, Wuhan Hubei 430033, China

Received:2016-07-28 Online:2016-10-31 Published:2020-05-13

摘要/Abstract

摘要：

认证密钥协商协议是一个非常重要的密码学概念,可以用来确保数据的保密性和完整性。通过在密钥协商中加入隐式认证,可以使得用户确认只有其指定方才能完成与其的密钥协商,从而避免传统密钥协商协议的中间人攻击。目前大部分认证密钥协商协议使用了双线性对,但双线性对的计算效率较低,因此研究并设计不使用双线性对的认证密钥协商协议一直是一个研究的热点。尽管一些学者提出了一些方案,但是这些方案构造仍显复杂,为了提高协议的运行效率,文章研究并提出了一种基于身份的认证密钥协商协议,协议不使用双线性对,同时协议构造简单,安全性好。在eCK模型下,将协议的安全性规约到CDH数学困难假设,形式化地证明了协议的安全性。最后通过协议对比,表明文章提出的协议运行效率更高,安全性更好。

关键词: 认证密钥协商, eCK模型, CDH数学困难假设, 双线性对

Abstract:

Authenticated key agreement protocol is a very important concept of cryptography, which can be used to ensure the confidentiality and integrity of data. By adding an implicit authentication in the key agreement, the user can confirm that only the intended party can complete key agreement with himself. The method avoids the middle man attack in traditional key agreement protocol. At present, most of the authenticated key agreement protocols use bilinear pairing which has low computational efficiency. Therefore it is a hot research topic to study and design the authentication key agreement protocol without using bilinear pairing. Although some scholars have put forward some schemes, the construction of these schemes is still somewhat complicated. In order to improve the efficiency of the protocol, this paper presents an identity-based authenticated key agreement protocols without using bilinear pairings. At the same time, the protocol is simple in structure and good in security. The protocol’s security is reduced to CDH mathematical difficulty hypothesis, and is formally proved in the eCK model. By comparison, it shows that the protocol has higher efficiency and better security.

Key words: authenticated key agreement, eCK model, CDH mathematical difficult hypothesis, bilinear pairing

中图分类号:

TP309

矢敏, 叶伟伟, 欧庆于. 不需双线性对的基于身份的认证密钥协商协议[J]. 信息网络安全, 2016, 16(10): 21-27.

Min SHI, Weiwei YE, Qingyu OU. Identity-based Authenticated Protocol without Bilinear Pairing[J]. Netinfo Security, 2016, 16(10): 21-27.

图/表 1

参考文献 21

[1]	DIFFE W, HELLMAN M.New Directions in Cryptography[J]. IEEE Transactions on Information Theory. 1976, 22(6): 644-654.
[2]	LAUTER K, MITYAGIN A.Security Analysis of KEA Authenticated Key Exchange Protocol[C]//IACR. 9th International Conference on Theory and Practice of Public-Key Cryptography, April 24-26, 2006, New York, USA. Berlin: Springer, 2006: 378-394.
[3]	USTAOGLU B.Obtaining a Secure and Efficient Key Agreement Protocol from (H) MQV and NAXOS[J]. Designs, Codes and Cryptography, 2008, 46(3): 329-342.
[4]	SHAMIR A.Identity-based Cryptosystems and Signature Schemes[J]. Lecture Notes in Computer Science, 1985, 21(2): 47-53.
[5]	李强,冯登国,张立武,等. 标准模型下增强的基于属性的认证密钥协商协议[J]. 计算机学报,2013,36(10):2156-2167.
[6]	WATERS B.Ciphertext-policy Attribute-based Encryption: An Expressive, Efficient, and Provably Secure Realization[C]//IACR. 14th International Conference on Practice and Theory in Public Key Cryptography, March 6-9, 2011, Taormina, Italy. Heidelberg: Springer, 2011: 53-70.
[7]	ISLAM S K H, BISWAS G P. A Pairing-free Identity-based Authenticated Group Key Agreement Protocol for Imbalanced Mobile Networks[J]. Annals of Telecommunications-annales Des Télécommunications, 2012, 67(11): 547-558.
[8]	TAN Z.An Efficient Pairing-free Identity,based Authenticated Group Key Agreement Protocol[J]. International Journal of Communication Systems, 2015, 28(3): 534-545.
[9]	WU Zhenyu, LEE Y C, LAI Feipei, et al.A Secure Authentication Scheme for Telecare Medicine Information Systems[J]. Journal of Medical Systems, 2012, 36(3): 1529-1535.
[10]	HE Debiao, CHEN Jianhua, ZHANG Rui.A More Secure Authentication Scheme for Telecare Medicine Information Systems[J]. Journal of Medical Systems, 2012, 36(3): 1989-1995.
[11]	WEI Jianghong, HU Xuexian, LIU Wenfen.An Improved Authentication Scheme for Telecare Medicine Information Systems[J]. Journal of Medical Systems, 2012, 36(6): 3597-3604.
[12]	张延红,陈明. 标准模型下强安全的无证书认证密钥协商协议[J]. 四川大学学报:工程科学版,2013(1):125-132.
[13]	CAO Xuefei, KOU Weidong, YU Yong, et al.Identity-based Authenticated Key Agreement Protocols without Bilinear Pairings[J]. IEICE Transactions on Fundamentals of Electronics Communications& Computer Sciences, 2008, 91(12): 3833-3836.
[14]	袁艳祥,游林. 基于身份加密的可认证密钥协商协议[J]. 信息网络安全,2014(3):1-6.
[15]	SUN Haiyan, WEN Qiaoyan, ZHANG Hua, et al.A Strongly Secure Identity,based Authenticated Key Agreement Protocol without Pairings under the GDH Assumption[J]. Security and Communication Networks, 2015, 8(17): 3167-3179.
[16]	NI Liang, CHEN Gongliang, LI Jianhua, et al. Strongly Secure Identity-based Authenticated Key Agreement Protocols without Bilinear Pairings[EB/OL]. .
[17]	CAO Xuefei, KOU Weidong, DU Xiaoni.A Pairing-free Identity-based Authenticated key Agreement Protocol with Minimal Message Exchanges[J]. Information Sciences, 2010, 180(15): 2895-2903.
[18]	ISLAM S K H, BISWAS G P. An Improved Pairing-free Identity-based Authenticated Key Agreement Protocol Based on ECC[J]. Procedia Engineering, 2012, 30(4): 499-507.
[19]	秦志光,包文意,赵洋,等. 云计算里的一种无双线性对的模糊关键字加密方式[J]. 信息网络安全,2015(11):1-6.
[20]	朱辉,李晖,王育民. 不使用双线性对的无证书签密方案[J]. 计算机研究与发展,2010,47(9):1587-1594.
[21]	赵洋,任化强,熊虎,等. 无双线性对的云数据完整性验证方案[J].信息网络安全,2015(7):7-12.

不需双线性对的基于身份的认证密钥协商协议

Identity-based Authenticated Protocol without Bilinear Pairing

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 1

参考文献 21

相关文章 13

编辑推荐

Metrics

本文评价

[1]	刘全明, 冯杰, 李尹楠, 苏莎莎. 区分身份所在层数的HIBE方案[J]. 信息网络安全, 2019, 19(11): 14-23.
[2]	黎琳, 张旭霞. zk-snark的双线性对的国密化方案[J]. 信息网络安全, 2019, 19(10): 10-15.
[3]	程庆丰, 阮展靖, 张瑞杰. 对三个无双线性对的密钥协商协议分析[J]. 信息网络安全, 2019, 19(1): 16-26.
[4]	王越, 程相国, 王戌琦. 基于双线性对的密钥隔离群签名方案研究[J]. 信息网络安全, 2018, 18(6): 61-66.
[5]	陈亚萌, 程相国, 王硕, 高明. 基于双线性对的无证书群签名方案研究[J]. 信息网络安全, 2017, 17(3): 53-58.
[6]	唐春明, 高隆. 区块链系统下的多方密钥协商协议[J]. 信息网络安全, 2017, 17(12): 17-21.
[7]	赵洋, 陈阳, 熊虎, 任化强. 云环境下一种可撤销授权的数据拥有性证明方案[J]. 信息网络安全, 2015, 15(8): 1-7.
[8]	秦志光,包文意,赵洋,熊虎. 云计算里的一种无双线性对的模糊关键字加密方式[J]. 信息网络安全, 2015, 15(11): 1-6.
[9]	袁艳祥;游林. 基于身份加密的可认证密钥协商协议[J]. , 2014, 14(3): 0-0.
[10]	. 基于身份加密的可认证密钥协商协议[J]. , 2014, 14(3): 1-.
[11]	李舜鹏;张明武. 基于双线性对签名的安全移动客户端[J]. , 2013, 13(5): 0-0.
[12]	李伟;吕克伟. 类背包DH问题的比特安全性研究[J]. , 2013, 13(10): 0-0.
[13]	李发根;王超;熊虎. 基于双线性对的具有已知签名人的门限代理签名方案[J]. , 2009, 9(3): 0-0.