基于身份的可认证非对称群组密钥协商协议被引量：13

Identity-Based Authenticated Asymmetric Group Key Agreement

下载PDF

导出

摘要非对称群组密钥协商协议(asymmetric group key agreement,AGKA)能使群组内部成员安全地传递信息.随着大规模分布式网络协同计算的发展,参加安全协同计算的成员可能来自于不同领域、不同时区、不同云端及不同类型的网络.现有的AGKA不能满足来自于跨域及异构网络之间群组成员的安全信息交换,且安全性仅局限于抗被动攻击.提出一种基于身份的可认证非对称群组密钥协商协议(identity-based authenticated asymmetric group key agreement,IB-AAGKA),该协议实现一轮非对称群组密钥协商,解决群组成员因时区差异而不能保持多轮在线密钥协商的问题;可实现匿名性与可认证性;支持节点的动态群组密钥更新,实现了群组密钥向前保密与向后保密安全性.在decisional bilinear Diffie-Hellman(DBDH)困难假设下,证明了协议的安全性,并分析了协议的性能. The asymmetric group key agreement （AGKA） protocol enables external users to securely send messages to group members. With the development of large-scale collaborative computing in distributed network, the members who participate in collaborative computing may come from different domains, different time zones and different cloud ends networks. Existing AGKA can not meet the security of information exchange among group members that come from cross-domain or heterogeneous network, and it is only secure against passive attacks which are too weak to capture the attacks in the real world. In this paper, we formalize an active security model for identity-based authentication asymmetric group key agreement （IB-AAGKA） protocol. Our protocol achieves an asymmetric group key agreement only one round, to resolve the problem that is hard to find a trusted party to serve as a dealer in a regular broadcast scheme, and is inconvenient to require all the parties in differences time zones to stay online concurrently to implement a （two-round or multi-round） regular GKA protocol. Our protocol can also achieve anonymous authentication. It supports the dynamic group key update of nodes for forward secrecy and backward secrecy of group key. Our protocol is proven secure under the decisional bilinear Diffie-Hellman （DBDH） problem assumption, and the performance analysis show that the proposed scheme is highly efficient.

作者张启坤王锐芳谭毓安

机构地区郑州轻工业学院计算机与通信工程学院北京理工大学计算机学院

出处《计算机研究与发展》 EI CSCD 北大核心 2014年第8期1727-1738,共12页 Journal of Computer Research and Development

基金国家自然科学基金项目(61272511)

关键词群组密钥协商非对称加密动态群组可认证性匿名性 group key agreement asymmetric encryption dynamic group authentication anonymous

分类号 TP309.7 [自动化与计算机技术—计算机系统结构]

引文网络
相关文献

参考文献32

1Rafaeli S, Hutchison D. A survey of key management for secure group communication [J]. ACM Computing Surveys, 2003, 35(3): 309-329.
2Zhao Xingwen, Zhang Fangguo, Tian Haibo. Dynamic asymmetric group key agreement for ad hoc networks [J]. Ad Hoc Networks, 2011, 9(5): 928-939.
3Cao X, Kou W, Du X. A pairing-free identity-based authenticated key agreement protocol with minimal message exchanges[J]. Information Sciences, 2010, 180(15): 2895- 2903.
4Chang Tingyi, Hwang Minshiang, Yang Weipang. A communication efficient three-party password authenticated key exchange protocol [J]. Information Sciences, 2011, 181 (1): 217-226.
5Guo Hua, Li Zhoujun, Mu Yi, et al. Provably secure identity based authenticated key agreement protocols with malicious private key generators [J]. Information Sciences, 2011, 181(3):628-647.
6Zhang L, Zhang F, Wu Q, et al. Simulatable certificateless two-party authenticated key agreement protocol[J]. Information Sciences, 2010, 180(6): 1020-1030.
7Just M, Vaudenay S. Authenticated multi-party key agreement [G] //LNCS 1163: Proc of the 1996 Int Conf on the Theory and Applications of Cryptology and Information Security. Berlin: Springer, 1996: 36-49.
8Burmester M, Desmedt Y. A secure and scalable group key exchange system [J]. Information Processing Letters, 2005, 94(3): 137-143.
9Bohli JM, Glas B, Steinwandt R. Towards provably secure group key agreement building on group theory [G] //LNCS 4341: Proc of Cryptology-VIETCRYPT. Berlin: Springer, 2006:322-336.
10Yao Gang, Wang Hongii, Jiang Qingshan. An authenticated 3-Round identity based group key agreement protocol [C]//Proc of the 3rd Int Conf on Availability, Reliability, and Security. Piscataway, NJ: IEEE, 2008: 538-543.

二级参考文献11

1李兴华,马建峰,文相在.基于身份密码系统下Canetti-Krawczyk模型的安全扩展[J].中国科学（E辑）,2004,34(10):1185-1192. 被引量：6
2万仁福,李方伟,朱江.匿名双向认证与密钥协商新协议[J].电子科技大学学报,2005,34(1):61-64. 被引量：5
3冯国柱,李超,吴翊.一个高效的无线匿名认证和密钥协商协议[J].计算机工程与应用,2006,42(19):4-7. 被引量：4
4陈辉焱,吕述望,刘振华.基于身份的具有部分消息恢复功能的签名方案[J].计算机学报,2006,29(9):1622-1627. 被引量：8
5Desmedt Y. Society and group oriented cryptography: A new concept [G] //LNCS 293: CRYPTO 1987. Berlin: Springer, 1988: 120-127.
6Shamir A. Identity-based cryptosystems and signature schemes [G]//LNCS 196: CRYPTO 1984. Berlin: Springer, 1985: 48-53
7Cocks C. An identity based eneryption scheme based on quadratic residues[G] //LNCS 2260: Ⅷ IMA Int Conf on Cryptography and Coding. Berlin: Springer, 2001:360-363
8Al-Riyami S S, Paterson K G. CBE from CL-PKE: A generic construction and efficient schemes [G]//LNCS 3386: PKC 2005. Berlin: Springer, 2005:398-415
9Lin X J, Wu C K, Liu F. Many-to-one encryption and authentication scheme and its application [J]. Journal of Communications and Networks, 2008, 10(1): 18-27
10李发根,Shirase Masaaki,Takagi Tsuyoshi.Analysis and Improvement of Authenticatable Ring Signcryption Scheme[J].Journal of Shanghai Jiaotong university(Science),2008,13(6):679-683. 被引量：9

共引文献4

1刘秀燕,魏振钢,林喜军,邢静.多对一加密认证方案在视频会议中的应用[J].计算机科学,2013,40(11A):188-191.
2魏振钢,邢静,林喜军,刘秀燕.数字电视双向加密体系结构解决方案[J].中国海洋大学学报（自然科学版）,2014,44(2):112-116. 被引量：2
3TAN Yu'an,ZHENG Jiamin,ZHANG Qikun,ZHANG Xiaosong,LI Yuanzhang,ZHANG Quanxin.A Specific-Targeting Asymmetric Group Key Agreement for Cloud Computing[J].Chinese Journal of Electronics,2018,27(4):866-872. 被引量：2
4ZHENG Jiamin,TAN Yu'an,ZHANG Xiaosong,ZHANG Qikun,ZHANG Quanxin,ZHANG Changyou.Multi-domain Lightweight Asymmetric Group Key Agreement[J].Chinese Journal of Electronics,2018,27(5):1085-1091. 被引量：4

同被引文献69

1伍前红,张欣雨,唐明,尹鹏,邱镇龙.针对动态群组及应用的扩展非对称群密钥协商协议(英文)[J].China Communications,2011,8(4):32-40. 被引量：1
2王英龙,王美琴,王少辉,潘景山.无线移动自组网安全路由协议的分析与研究[J].计算机应用研究,2004,21(9):161-163. 被引量：6
3孙海波,林东岱.基于零知识集的群组密钥分配方案[J].电子学报,2005,33(2):345-349. 被引量：4
4王圣宝,曹珍富,董晓蕾.标准模型下可证安全的身份基认证密钥协商协议[J].计算机学报,2007,30(10):1842-1852. 被引量：42
5Bruce N,Lee H J.A secure authentication protocol among mobile phone and wireless sensor networks[C]//Proc of the 15th International Conference on Advanced Communication Technology.[S.l.] :IEEE Press,2013:52-59.
6Tyagi S,Kumar N.A systematic review on clustering and routing techniques based upon LEACH protocol for wireless sensor networks[J].Journal of Network and Computer Applications,2013,36(2):623-645.
7Turkanovic′ M,Brumen B,Hlbl M.A novel user authentication and key agreement scheme for heterogeneous Ad hoc wireless sensor networks,based on the Internet of things notion[J].Ad hoc Networks,2014,20:96-112.
8Sun Dazhi,Li Jianxin,Feng Zhiyong,et al.On the security and improvement of a two-factor user authentication scheme in wireless sensor networks[J].Personal and Ubiquitous Computing,2013,17(5):895-905.
9Yasmin R,Ritter E,Wang Guilin.Provable security of a pairing-free one-pass authenticated key establishment protocol for wireless sensor networks[J].International Journal of Information Security,2014,13(5):453-465.
10Choi Y,Lee D,Kim J,et al.Security enhanced user authentication protocol for wireless sensor networks using elliptic curves cryptography[J].Sensors,2014,14(6):10081-10106.

引证文献13

1崔维,张国山,李晖.一种轻量级的动态化密钥协商的物联网身份认证协议研究[J].计算机应用研究,2016,33(2):531-533. 被引量：11
2苑博奥,刘军,周海刚.第3讲密码协议研究与发展[J].军事通信技术,2017,38(1):90-96. 被引量：1
3胡志言,杜学绘,曹利峰.会话密钥协商协议研究进展[J].计算机应用与软件,2018,35(5):1-9. 被引量：2
4周健,施文君,殷红彩,孙丽艳.飞行器自组网络非交互式动态群组密钥管理研究[J].计算机科学与探索,2018,12(7):1126-1135. 被引量：1
5TAN Yu'an,ZHENG Jiamin,ZHANG Qikun,ZHANG Xiaosong,LI Yuanzhang,ZHANG Quanxin.A Specific-Targeting Asymmetric Group Key Agreement for Cloud Computing[J].Chinese Journal of Electronics,2018,27(4):866-872. 被引量：2
6ZHANG Qikun,LI Yongjiao,ZHANG Quanxin,YUAN Junling,WANG Ruifang,GAN Yong,TAN Yu'an.A Self-certified Cross-Cluster Asymmetric Group Key Agreement for Wireless Sensor Networks[J].Chinese Journal of Electronics,2019,28(2):280-287. 被引量：5
7张启坤,甘勇,王锐芳,郑家民,谭毓安.簇间非对称群组密钥协商协议[J].计算机研究与发展,2018,55(12):2651-2663. 被引量：7
8朱岩,尹昊,王秋艳.群组密码的对等VPN系统及多播密钥分发协议[J].软件学报,2019,30(9):2815-2829. 被引量：2
9张金辉,黄加成,梁红梅,李慧敏.无双线性对的无证书组密钥协商协议的安全性分析及改进[J].计算机应用与软件,2020,37(7):287-291.
10吴凯,王海江,魏贵义,陈力.一种基于多服务器的安全可搜索加密方法[J].浙江科技学院学报,2020,32(6):523-530.

二级引证文献31

1蒋麦占.IEC364-4-442建筑物电气装置对暂态过电压及对高压系统接地故障的保护[J].工程设计与研究（长沙）,2000(1):18-24. 被引量：1
2赵洁.物联网通信信道的量子密钥协议研究[J].激光杂志,2017,38(12):114-118. 被引量：7
3陈建辉,郑小东.云计算环境下网络匿名用户安全性认证仿真[J].计算机仿真,2018,35(9):283-286. 被引量：4
4李怀强,周扬.移动大数据匿名双向身份认证方法仿真[J].计算机仿真,2018,35(9):401-404. 被引量：1
5姜明富,孙剑.云计算环境下一次性口令身份认证系统设计[J].科技通报,2017,33(10):104-108. 被引量：2
6王超,刘黎明.基于ECC点乘的多因子远程身份验证协议[J].计算机工程与设计,2018,39(11):3368-3373. 被引量：3
7李祉岐,孙磊,闻凯.基于服务器私人密钥轻量级的身份验证协议[J].计算机工程与设计,2018,39(11):3374-3379. 被引量：1
8张萌,刘秋红,宫继兵.基于混沌映射和模糊提取器的身份验证方案[J].计算机工程与设计,2018,39(12):3655-3660. 被引量：2
9姚萌萌,朱正超,刘明达.一种改进的基于认证测试的形式化分析方法[J].信息网络安全,2019(1):27-33.
10WEI Hua,SHAN Chun,HU Changzhen,ZHANG Yu,YU Xiao.Software Defect Prediction via Deep Belief Network[J].Chinese Journal of Electronics,2019,28(5):925-932. 被引量：5

1毛江栋,张来顺,郭渊博,张婷.基于椭圆曲线和三叉树的群组密钥协商方案[J].计算机应用与软件,2010,27(7):30-32. 被引量：2
2杨春尧,陆正福,李军.UC安全的动态群组密钥协商协议设计与分析[J].通信技术,2014,47(1):81-85. 被引量：1
3胡红宇,艾灵仙.安全高效的群组密钥协商协议[J].计算机应用,2010,30(9):2401-2403.
4张子剑,祝烈煌,廖乐健.一种可抵抗内部攻击的高效群组密钥协商协议编译器[J].东南大学学报（自然科学版）,2010,40(A02):313-317.
5钱琦锋,程春玲.WSN中基于非双线性对的无证书群组密钥协商协议[J].计算机科学,2015,42(7):186-190. 被引量：4
6祝烈煌,刘丹,王飞,刘汉南,詹培星.传感器网络上群组密钥协商协议的设计与实现[J].解放军理工大学学报（自然科学版）,2012,13(3):266-270.
7袁思敏,马传贵,相生奇.非平衡网络环境下基于身份的组密钥交换协议[J].计算机应用,2015,35(5):1399-1405. 被引量：1
8宋曦,邓志森,熊志杰.基于XTR公钥密码体制的群组密钥协商协议设计[J].信息安全与通信保密,2013,11(12):140-144.
9赵秀凤,徐秋亮,刘伟.叛逆者可追踪的非对称群组密钥协商协议[J].计算机科学,2011,38(9):41-44. 被引量：1
10赵秀凤,徐秋亮,韦大伟.群组密钥协商协议的安全性分析方法研究[J].计算机科学,2011,38(6):145-148. 被引量：4

计算机研究与发展

2014年第8期

浏览历史

内容加载中请稍等...

基于身份的可认证非对称群组密钥协商协议被引量：13

参考文献32

二级参考文献11

共引文献4

同被引文献69

引证文献13

二级引证文献31

相关作者

相关机构

相关主题

浏览历史

基于身份的可认证非对称群组密钥协商协议 被引量：13

参考文献32

二级参考文献11

共引文献4

同被引文献69

引证文献13

二级引证文献31

相关作者

相关机构

相关主题

浏览历史

基于身份的可认证非对称群组密钥协商协议被引量：13