摘要
针对现有TCG组织定义的远程证明机制证明过程复杂和隐私泄漏的不足,通过使用基于双线性映射的BBS+签名算法和属性证书机制代替平台配置信息的方式,提出了一种基于双线性映射和属性证书的远程证明方案(Bilinear Mappingand Property-Based Attestation,BMPBA)。与已有的远程证明方案相比,BMPBA方案更好地降低了平台配置信息易泄露的风险,其使用的签名方案具有密钥与签名长度短和计算效率高的优点,从而提高了远程证明机制的运行效率。分析结果表明:利用该方案能够高效率地实现平台间的远程证明,并能较好地保证平台证明的安全性、正确性和不可伪造性。
Since TCG-defined remote attestation is not sufficient for complicated attestation and privacy leaks, a bilinear mapping and property-based attestation scheme named BMPBA was proposed through using BBS+ signature based on bilinear mapping and propertybased certificate instead of platform configuration information. Compared with the current remote attestation scheme, the risk of leaking platform configuration information could be better reduced; Meanwhile the efficiency of remote attestation could be improved because of the shorter key and higher computing speed. The analysis shows that remote attestation between platforms could be efficiently implemented by using BMPBA, and the security, validity and enforceability of platform attestation also could be guaranteed.
出处
《计算机技术与发展》
2012年第1期233-237,共5页
Computer Technology and Development
基金
江苏省自然科学基金滚动资助项目(BK2011072)
江苏高校优势学科建设工程资助项目(yx002001)
关键词
远程证明
属性证书
BBS+签名
remote attestation
property-based certificate
BBS signature