摘要
针对椭圆曲线中双线性对运算计算开销较大和PKI中证书管理的问题,利用基于身份的公钥密码算法和椭圆曲线加法群上的GDH困难问题,设计了一种高效安全的认证密钥协商协议,并在随机预言机模型下证明了协议的安全性。分析表明,该协议满足已知会话密钥安全性、完美前向安全性、抗临时密钥泄露攻击和抗会话密钥托管等安全属性,且能够在仅5次标量乘法运算后完成参与方之间的相互认证和会话密钥协商,具有较小的计算开销。
For the bad computation overhead of bilinear pairings in elliptic curve and the problems of certificate man-agement in the PKI, an efficient and secure authentication key agreement protocol was proposed based on the identi-ty-based cryptosystem and GDH difficult problem on the additive group of elliptic curve. Meanwhile, the security of the new protocol was proved under the random oracle model. The analysis shows that the new protocol meets security prop-erties such as known session key security, perfect forward security, ephemeral secret leakage resistance and the session key escrow resistance. The proposed protocol has the good computational overhead for it was able to complete the mutual authentication and session key agreement between parties under only 5 times scalar multiplication.
出处
《通信学报》
EI
CSCD
北大核心
2017年第8期19-27,共9页
Journal on Communications
基金
国家自然科学基金资助项目(No.61272519
No.61170297
No.61572080
No.61472258)~~
关键词
基于身份密码学
认证密钥协商
随机预言机模型
椭圆曲线
identity-based cryptosystem, authentication key agreement, random oracle model, elliptic curve
