区分身份所在层数的HIBE方案

doi:10.3969/j.issn.1671-1122.2019.11.003

信息网络安全 ›› 2019, Vol. 19 ›› Issue (11): 14-23.doi: 10.3969/j.issn.1671-1122.2019.11.003

区分身份所在层数的HIBE方案

刘全明^1,², 冯杰¹(), 李尹楠¹, 苏莎莎^1,³

1.山西大学计算机与信息技术学院,山西太原 030006
2.山西晋信安科技有限公司,山西太原 030006
3.内蒙古电力集团蒙电信息通信产业有限责任公司,内蒙古呼和浩特 010000

收稿日期:2019-09-16 出版日期:2019-11-10 发布日期:2020-05-11
作者简介:
作者简介：刘全明（1973—）,男,山西,副教授,博士,主要研究方向为网络行业分析与数据挖掘;冯杰（1995—）,男,山西,硕士研究生,主要研究方向为信息安全;李尹楠（1996—）,女,山西,硕士研究生,主要研究方向为网络安全流量分析;苏莎莎（1993—）,女,内蒙古,硕士,主要研究方向为网络安全数据分析。
基金资助:
国家自然科学基金[61673295,U1805263];山西省回国留学人员科研资助项目[2016-004]

A HIBE Scheme of Differentiates the Number of Identity Layers

Quanming LIU^1,², Jie FENG¹(), Yinnan LI¹, Shasha SU^1,³

1. School of Computer and Information Technology, Shanxi University, Taiyuan Shanxi 030006, China
2. Shanxi Jinxin’an Technology Co.,Ltd. , Taiyuan Shanxi 030006, China;
3. Inner Mongolia Power Group Mengdian Information &Telecommunication Co., Ltd. , Hohhot Inner Mongolia 010000, China;

Received:2019-09-16 Online:2019-11-10 Published:2020-05-11

摘要/Abstract

摘要：

为了识别加密系统内部攻击威胁,文章基于分层身份加密结构内部的加密过程中存在奇数和偶数两种情况的特点,将密文分成两种形式并提出了HIBE方案。在解密时系统能够区分内部敌手解密者的身份层数,解密只需要一次双线性对计算,在一定程度上提高了解密的效率。使用双系统加密方法证明其安全性,证明该方案在适应性ID模型下是安全的,而且是匿名的。通过效率比较,该方案与原始方案相比,使用的参数更少,加密效率有所提升,能够抵抗外部攻击,并且能够有效识别来自系统内部信息泄露的威胁,使加密方案的安全性有所提高。

关键词: 加密系统, 基于分层身份加密, 双线性对计算, 双系统加密技术, 适应性ID模型

Abstract:

In order to identify the internal attack threat of the encryption system, this paper divides the encryption process based on the hierarchical identity encryption structure into two cases: odd and even. By dividing the ciphertext into two forms, the system can distinguish the identity layer of the internal adversary. Decryption requires only one bilinear pair computation, which improves the decryption efficiency to a certain extent. The method of security proof is the double system encryption technology, which proves that the scheme is secure and anonymous under the adaptive ID model. Compared with the original scheme, the scheme uses fewer parameters and the encryption efficiency is improved. The scheme can resist the external attack, and can effectively identify the threat from the internal information leakage of the system, so that the security of the encryption scheme has been improved.

Key words: encryption system, hierarchical identity-based encryption, pairing computation, dual system encryption, adaptive ID model

中图分类号:

TP309

刘全明, 冯杰, 李尹楠, 苏莎莎. 区分身份所在层数的HIBE方案[J]. 信息网络安全, 2019, 19(11): 14-23.

Quanming LIU, Jie FENG, Yinnan LI, Shasha SU. A HIBE Scheme of Differentiates the Number of Identity Layers[J]. Netinfo Security, 2019, 19(11): 14-23.

图/表 2

参考文献 24

[1]	SHAMIR A.Identity-based Cryptosystems and Signature Schemes[C]//Springer. CRYPTO 84, August 19-22, 1984, Santa Barbara, California, USA. Berlin, Heidelberg: Springer, 1984: 47-53.
[2]	BONEH D, FRANKLIN M.Identity-based Encryption from the Weil Pairing[C]//Springer. 21st Annual International Cryptology Conference, August 19-23, 2001, Santa Barbara, California, USA. Berlin, Heidelberg: Springer, 2001: 213-229.
[3]	GENTRY C and SILVERBERG A. Hierarchical Id-based Cryptography[C]//Springer. 8th International Conference on the Theory and Application of Cryptology and Information Security, December 1-5, 2002, Queenstown, New Zealand. Berlin, Heidelberg: Springer, 2002: 548-566.
[4]	HORWITZ J and LYNN B. Toward Hierarchical Identity-based Encryption[C]//Springer. International Conference on the Theory and Applications of Cryptographic Techniques, April 28-May 2, 2002, Amsterdam, The Netherlands. Berlin, Heidelberg: Springer, 2002: 466-481.
[5]	BOYEN X, WATERS B.Anonymous Hierarchical Identity-based Encryption(without Random Oracles)[C]//Springer. 26th Annual International Cryptology Conference, August 20-24, 2006, Santa Barbara, California, USA. Berlin, Heidelberg: Springer, 2006: 290-307.
[6]	SEOJ H., KOBAYASHI T, OHKUBO M, et al. Anonymous Hierarchical Identity-based Encryption with Constant Size Ciphertexts[C]//Springer. 12th International Conference on Practice and Theory in Public Key Cryptography Irvine, March 18-20, 2009, CA, USA. Berlin, Heidelberg: Springer, 2009: 215-234.
[7]	GENTRYC. Fully Homomorphic Encryption Using Ideal Lattices[C]//ACM. 41st ACM Symposium on Theory of Computing, May 31-June 2, 2009, Bethesda, MD, USA. New York, NY, USA: ACM, 2009: 169-178.
[8]	AGRAWAL S, BONEH D, BOYEN X. EfficientLattice(H)IBE in the Standard Model[C]//Springer.29th Annual International Conference on the Theory and Applications of Cryptographic Techniques, May 30-June 3, 2010, French Riviera. Berlin, Heidelberg: Springer, 2010: 553-572.
[9]	SINGH K, RANGAN C P, BANERJEE A K.Efficient Lattice HIBE in the Standard Model with Shorter Public Parameters[J]. Information and Communication, 2014, 84(7): 542-553.
[10]	SEOJ H, EMURAK. Efficient Delegation of Key Generation and Revocation Functionalities in Identity-based Encryption[C]//Springer. The Cryptographers’ Track at the RSA Conference, February 25-March 1, 2013, San Francisco, CA, USA. Berlin, Heidelberg: Springer, 2013: 343-358.
[11]	LEE K, PARK S.Revocable Hierarchical Identity-based Encryption with Shorter Private Keys and Update Keys[J]. Designs, Codes and Cryptography, 2018, 86(10): 2407-2440.
[12]	SEO J H, EMURA K.Revocable Hierarchical Identity-based Encryption: History-free Update, Security against Insiders, and Short Ciphertexts[C]//Springer. CT-RSA 2015, April 20-24, 2015, San Francisco, California, USA. Berlin, Heidelberg: Springer, 2015: 106-123.
[13]	SUSILO W and MU Y. Hierarchical Identity-Based Broadcast Encryption[C]//Springer. 19th Australasian Conference, July 7-9, 2014, Wollongong, NSW, Australia. Berlin, Heidelberg: Springer, 2014: 242-257.
[14]	BLAZY O, KILTZ E, PAN J.(Hierarchical) Identity-based Encryption from Affine Message Authentication[C]//Springer. 34th Annual Cryptology Conference, August 17-21, 2014, Santa Barbara, CA, USA. Berlin, Heidelberg: Springer, 2014: 408-425.
[15]	JOUX A.A One Round Protocol for Tripartite Diffie-Hellman, in Algorithmic Number Theory(ANTS-IV)[C]//Springer. 4th International Algorithmic Number Theory Symposium, July 2-7, 2000, The Netherlands. Berlin, Heidelberg: Springer, 2000: 385-394.
[16]	WATERS B.Dual System Encryption: Realizing Fully Secure IBE and HIBE under Simple Assumptions[C]//Springer. 29th Annual International Cryptology Conference, August 16-20, 2009, Santa Barbara, CA, USA. Berlin, Heidelberg: Springer, 2009: 619-636.
[17]	WEE H.Déjà Q: Encore!Un Petit IBE[C]//Springer. 13th International Conference, TCC 2016-A, January 10-13, 2016, Tel Aviv, Israel. Berlin, Heidelberg: Springer, 2016: 237-258.
[18]	LEWKO A, WATERS B.New Techniques for Dual System Encryption and Fully Secure HIBE with Short Ciphertexts[C]//Springer. 7th Theory of Cryptography Conference, February 9-11, 2010, Zurich, Switzerland. Berlin, Heidelberg: Springer, 2010: 455-479.
[19]	BONEH D, GOH E, NISSIM K.Evaluating 2-DNF Formulas on Ciphertexts[C]//Springer. Second Theory of Cryptography Conference, February 10-12, 2005, Cambridge, MA, USA. Berlin, Heidelberg: Springer, 2005: 325-341.
[20]	WATERS B.Efficient Identity-based Encryption without Random Oracles[C]//Springer. 24th Annual International Conference on the Theory and Applications of Cryptographic Techniques, May 22-26, 2005, Aarhus, Denmark. Berlin, Heidelberg: Springer, 2005: 114-127.
[21]	YANG Bo.The Provable Security of Cryptography[M]. Beijing: Tsinghua University Press, 2017: 36-38.
	杨波. 密码学中的可证明安全性[M]. 北京:清华大学出版社,2017:36-38.
[22]	RAMANNASC, SARKARP. Efficient(Anonymous) Compact HIBE from Standard Assumptions[C]//Springer. 8th International Conference on Provable Security, October 9-10, 2014, Hong Kong, China. Berlin, Heidelberg: Springer, 2014: 243-258.
[23]	SEO J H, KOBAYASHI T, OHKUBO M, et al.Anonymous Hierarchical Identity-based Encryption with Constant Size Ciphertexts[C]//Springer. 12th International Conference on Practice and Theory in Public Key Cryptography, March 18-20, 2009, Irvine, CA, USA. Berlin, Heidelberg: Springer, 2009: 215-234.
[24]	CARO D A, IOVINO V, PERSIANO G.Fully Secure Anonymous HIBE and Secret-key Anonymous IBE with Short Ciphertexts.[C]//Springer. 4th International Conference on Pairing-Based Cryptography, December 13-15, 2010, Yamanaka Hot Spring, Japan. Berlin, Heidelberg: Springer, 2010: 347-366.

结构	文献[18] 方案	文献[23] 方案	文献[24] 方案	本文方案
安全模型	适应性ID	选择性ID	适应性ID	适应性ID
假设模型	子群判定	h-wBDH?,h-cDH	子群判定	子群判定
安全退化	O(q)	O(1)	O(q)	O(q)
公钥数量	(l+3,1)	(l+6,1)	(l+4,1)	(?l∕2?+3,2)
主密钥数	1	l+4	2	3
密文数量	2	3	2	1
私钥数量	l-k+2	3(l-k+3)	2(l-k+2)	l-k+1
加密算法	h+2	h+6	h+4	h+1
解密对数	2	4	2	1
密钥生成	2l-k+4	3l-2k+2	4(l+2-3k)	2l-k+2
委派算法	2l-k+6	6(l-k)+2	4(l-k)+11	l-k+1
是否匿名	否	是	是	是

区分身份所在层数的HIBE方案

A HIBE Scheme of Differentiates the Number of Identity Layers

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 2

参考文献 24

相关文章 4

编辑推荐

Metrics

本文评价

[1]	卓才华, 李大鹏, 袁开国. 基于GDOI的国产化加密系统设计与实现[J]. 信息网络安全, 2015, 15(9): 84-88.
[2]	黄丽伟;曹景龙;吕克伟. 抵御一般混合敌手的RSA可验证签名方案[J]. , 2011, 11(9): 0-0.
[3]	邱伟星;关一鸣;黄华. DES加密算法在秘密共享中的应用[J]. , 2011, 11(3): 0-0.
[4]	危蓉. 隐藏证书基础及其应用[J]. , 2009, 9(3): 0-0.