具有隐私保护特性的证书否认认证加密方案

doi:10.3969/j.issn.1671-1122.2018.10.009

信息网络安全 ›› 2018, Vol. 18 ›› Issue (10): 62-69.doi: 10.3969/j.issn.1671-1122.2018.10.009

具有隐私保护特性的证书否认认证加密方案

张玉磊(), 马彦丽, 刘文静, 王彩芬

西北师范大学计算机科学与工程学院,甘肃兰州 730070

收稿日期:2018-07-15 出版日期:2018-10-10 发布日期:2020-05-11
作者简介:
作者简介：张玉磊（1979—）,男,甘肃,副教授,博士,主要研究方向为密码学与信息安全;马彦丽（1992—）,女,甘肃,硕士研究生,主要研究方向为密码学与信息安全;刘文静（1994—）女,天津,硕士研究生,主要研究方向为密码学与信息安全;王彩芬（1963—）,女,河北,教授,博士,主要研究方向为密码学与信息安全。
基金资助:
国家自然科学基金[61163038,61262056,61262057];甘肃省高等学校科研项目[2017A-003,2018A-207];西北师范大学青年教师科研能力提升计划[NWNU-LKQN-14-7]

A Certificate Denial Authentication Encryption Schemes with Privacy Protection Features

Yulei ZHANG(), Yanli MA, Wenjing LIU, Caifen WANG

College of Computer Science and Engineering, Northwest Normal University, Lanzhou Gansu 730070,China

Received:2018-07-15 Online:2018-10-10 Published:2020-05-11

摘要/Abstract

摘要：

网络信息的快速发展,使得身份信息的安全性变得更为重要。文章基于证书公钥密码体制,提出了一种具有隐私保护特性的证书否认认证加密方案,有效避免了投票者身份在电子投票过程中和发送邮件者在发送邮件过程中存在的安全性问题。文章在随机预言模型下基于数学困难问题证明该方案具有不可区分性和不可伪造性。同时,该方案满足否认性的特点,不仅保护了投票者和发送者身份隐私,并对投票消息和发送消息进行否认以更好地解决隐私问题。与现有的身份否认认证加密方案相比,该方案的加密和验证效率相当,但消除了密钥托管问题。

关键词: 否认认证加密, 证书公钥加密, 随机预言模型, 电子投票

Abstract:

In the rapid development of network information, the security of identity information has become particularly important and critical. Based on the certificate public key cryptosystem, this paper proposes a denial-authentication encryption scheme for certificates with privacy protection features, which effectively avoids the security problems of the voter identity in the electronic voting process and the sender's sending email. Under the random oracle model(ROM), based on the bilinear Diffie-Hellman(BDH) assumption and Computational Diffie-Hellman(CDH) assumption, the scheme is proved to satify the indistinguishability and the existential unforgeability.Meanwhile, the scheme satisfies the denial, not only protects the privacy of voters and senders, but also denies voting messages and sending messages to better solve privacy problems. Compared with the existing identity-based denied authentication encryption schemes, the efficiency of the scheme is equivalent to the above ones in the aspects of encryption and verification, however the key escrow problems of those schemes are eliminated.

Key words: deniable authenticated encryption, certificate-based public key encryption, random oracle model, electronic voting

中图分类号:

TP309

张玉磊, 马彦丽, 刘文静, 王彩芬. 具有隐私保护特性的证书否认认证加密方案[J]. 信息网络安全, 2018, 18(10): 62-69.

Yulei ZHANG, Yanli MA, Wenjing LIU, Caifen WANG. A Certificate Denial Authentication Encryption Schemes with Privacy Protection Features[J]. Netinfo Security, 2018, 18(10): 62-69.

图/表 1

参考文献 15

[1]	DWORK C, NAOR M, SAHAI A.Concurrent zero-knowledge[J]. Journal of the ACM, 1999, 51(6):851-898.
[2]	LIU Dan, LIU Chang, SONG Qiao.Identity-based secure email system[J]. Netinfo Security, 2010,10(5):64-66.
	刘丹,刘畅,宋樵.基于身份的安全电子邮件系统[J].信息网络安全,2010,10(5):64-66.
[3]	CAO Tianjie, LIN Dongdai, XUE Rui.An Efficient ID-Based Deniable Authentication Protocol from Pairings[C]//IEEE. 19th International Conference on Advanced Information Networking and Applications. March 28-30 ,2005, Taipei,China.New York:IEEE, 2005:388-391
[4]	CHOU J S, CHEN Yalin,HUANG Jincheng.A ID-Based Deniable Authentication Protocol on Pairings[J]. Economic Theory, 2006, 26(2):347.
[5]	WANG Bin, SONG Zhaoxia.A Non-interactive Deniable Authentication Scheme Based on Designated Verifier Proofs[J]. Information Sciences, 2009, 179(6):858-865.
[6]	LI F, XIONG P,JIN C.Identity-based Deniable Authentication for Ad-hoc Networks[M].New York:Springer-Verlag New York, Inc, 2014.
[7]	YU Xingjie, GAO Neng, JIANG Weiyu.Research on Identity Authentication Technology in Cloud Computin[J]. Netinfo Security, 2012,12(8):71-74.
	余幸杰, 高能, 江伟玉. 云计算中的身份认证技术研究[J]. 信息网络安全, 2012,12(8):71-74.
[8]	WU Weifeng,LI Fagen.An Efficient Identity-Based Deniable Authenticated Encryption Scheme[J]. Ksii Transactions on Internet & Information Systems, 2015, 9(5):1904-1919.
[9]	LI Fagen, ZHENG Zhaohui, JIN Chunhua.Identity-based Deniable Authenticated Encryption and Its Application to E-mail System[J]. Telecommunication Systems, 2016, 62(4):625-639.
[10]	JIN Chunhua.Resrarch on Authentication Protocols with Special Properties and Their Applictions[D].ChengDu: University of Electronic Science and Technology,2016
	金春花. 具有特殊性质的认证协议设计及应用研究[D].成都:电子科技大,2016.
[11]	JIN Chunhua, ZHAO Jianyang.Efficient and Short Identity-Based Deniable Authenticated Encryption[C]//ICCCS. Cloud Computing and Security: Third International Conference, June 16-18,2017 ,Nanjing, China. New York:IEEE,2017 Part II:244-255.
[12]	CHEN Yameng, CHENG Xiangguo, WANG Shuo, et al.Research on Certificateless Group Signature Scheme Based on Bilinear Pairing[J]. Netinfo Security, 2017,17(3):53-58.
	陈亚萌,程相国,王硕,等.基于双线性对的无证书群签名方案研究[J].信息网络安全,2017,17(3):53-58.
[13]	GENTRY C.Certificate-based Encryption and the Certificate Revocation Problem[C]//EUROCRYPT 2003.International Conference on Theory and Applications of Cryptographic Techniques, May 4-8, 2003,Warsaw, Poland. Berlin, Heidelberg:Springer, 2003:272-293.
[14]	LIU J K, BARK J, SUSILO W, et al.Certificate-Based Signature Schemes without Pairings or Random Oracles[C]// ISC .11th International Conference on Information Security, September 15-18, 2008, Taipei, China. Berlin, Heidelberg:Springer, 2008:285-297.
[15]	POINTCHEVALl D,STERN J.Security Arguments for Digital Signatures and Blind Signatures[J]. Journal of Cryptology, 2000, 13(3):361-396.

	加密计算代价	解密计算代价	密码环境
文献[8]	2P+3PM	2P+1PM+1A	IDPKC,存在密钥托管问题
文献[10]	2P+3PM+1A	1P+1PM	IDPKC,存在密钥托管问题
本文方案	2P+3PM+1A	2P+1PM	CBPKC,不存在密钥托管问题

具有隐私保护特性的证书否认认证加密方案

A Certificate Denial Authentication Encryption Schemes with Privacy Protection Features

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 1

参考文献 15

相关文章 3

编辑推荐

Metrics

本文评价

[1]	胡荣磊, 李文敬, 蒋华, 张昕然. 基于离散对数的无证书聚合签密方案[J]. 信息网络安全, 2019, 19(7): 42-49.
[2]	陈亚楠, 梅倩, 熊虎, 徐维祥. 适用于工业物联网的无证书并行密钥隔离签名[J]. 信息网络安全, 2018, 18(10): 1-9.
[3]	朱正阳;刘镪;唐春明;张永强. 基于LWE同态加密的电子投票方案[J]. , 2013, 13(5): 0-0.