摘要
基于时间分割代理加密是一种典型的代理密码方案,可以将解密权委托给代理解密者,从而减轻原解密者的解密负担,具有广泛的应用前景,但研究成果相对较少。基于身份加密可直接将用户的身份标识作为公钥,简化了公钥证书的管理,近年来受到广泛关注,研究者提出很多方案。根据基于时间分割代理加密和基于身份加密在算法构成和安全模型两方面的区别与联系,提出一个基于时间分割代理加密的一般性构造方法,并证明其安全性。该方法可将任意一个安全的基于身份加密方案转换成安全的基于时间分割代理加密方案。通过该方法得到标准模型下安全的基于时间分割代理加密方案,大大丰富了基于时间分割代理加密方案的数量和类型。
Proxy cryptosystem based on time segmentation (PCBTS) is a typical proxy cryptosys- tern, which can delegate decryption right to the proxy decryptor, thus alleviating the burden of the original decryptor. Although it has broad application prospects, related research results are not plentiful. I- dentity-based encryption (IBE) applies the user's identity directly as a public key, thus the management of the public key certificate is simplified. It therefore has attracted many researchers to put forward a large number of schemes in recent years. According to the differences and similarities between the PCBTS and the IBE in the aspects of algorithm structure and security model, we propose a generic construction method for the PCBTS with a proof of its security. Using the proposed method, any secure IBE scheme can be transformed into a secure PCBTS. We apply this method to an actual case and obtain a secure PCBTS in the standard model, which greatly enriches the quantity and type of PCBTS.
出处
《计算机工程与科学》
CSCD
北大核心
2016年第11期2240-2245,共6页
Computer Engineering & Science
基金
国家自然科学基金(61170246)
福建省中青年教师教育科技项目(JA14202)
关键词
代理密码
基于身份加密
一般性转换
可证明安全
proxy cryptography
identity-based encryption
generic transformation
security proof