摘要
身份认证方案是实现访问控制的重要工具。结合基于身份的签密思想和零知识协议,给出了一个身份认证方案模型,该模型可以实现通信双方的互认证,且可被任何一个基于身份的签密方案实例化。给出的实例化是以现存比较高效的一个基于身份的签密方案进行的。分析了实例化后方案的安全性,结果表明它可以避免重放攻击、伪造攻击、中间人攻击等常见攻击,且该方案可以容易地扩展为一个可认证的密钥协商方案。
Authentication schemes are important tools fmishing access control. By combining the idea of identity-based signcryption and zero-knowledge protocol, a model for authentication scheme is presented. The model can reach the two parties' mutual authentication in the communication and is instantiated by any identity-based signcryption scheme. The instantiation appeared is actualized by an existing effective identity-based signcryption. The result of analyzing the instantiated scheme shows that it is secure against some familiar attacks such as replay attacks, forgery attacks, man-in-the-middle attacks and it is easily advanced to an authenticated key agreement scheme.
出处
《计算机工程与设计》
CSCD
北大核心
2008年第24期6269-6270,6284,共3页
Computer Engineering and Design
关键词
零知识
身份认证
签密
基于身份
双线性对
zero-knowledge
authentication
signcryption
identity-based
bilinearpairing