摘要
提出一个认证密钥交换协议AKE-1。与已有的协议相比,AKE-1效率较高。基于随机预言假设和CDH假设,该协议被证明在eCK07模型下是安全的。AKE-1使用的技术是Cash,Kiltz和Shoup最近提出的陷门测试。基于AKE-1给出一轮的变体(满足只有一个实体在线)和三轮的变体(提供密钥确认属性)以满足不同的应用。
This paper presents an Authenticated Key Exchange(AKE) protocol, named AKE-1. Compared with previous protocols, the proposal is more efficient and proven to be safe in newly enhanced Canetti-Krawczyk(eCK07) model under the random oracle assumption and the Computational Diffie-Hellman(CDH) assumption. It uses a technique named trapdoor test, recently proposed by Cash, Kiltz and Shoup. In addition, it presents a one-pass variant (for only one entity on line) and three-pass variant (providing key confirmation) ofAKE-1 for different applications.
出处
《计算机工程》
CAS
CSCD
北大核心
2010年第7期136-138,141,共4页
Computer Engineering
关键词
认证密钥交换协议
eCK07模型
CDH假设
陷门测试
authenticated key exchange protocol
enhanced Canetti-Krawczyk(eCK07) model: Computational Diffie-Hellman(CDH) assumption
trapdoor test