摘要
为增加密钥协商协议的安全性,提高会话密钥协商的效率,提出一种双实体单向可认证的密钥协商方案。在该方案中,协议发送方首先向接收方发送一个无证书数字签名,签名中包含发送方公钥、标识号、时间戳等能鉴别身份的信息;然后,接收方验证数字签名的有效性,并利用Diffie-Hellman密钥交换协议与发送方建立会话密钥。该方案不仅在随机预言模型下可证明是安全的,而且也同时满足会话密钥安全性、前向安全性、会话密钥的不可控性和抗密钥泄露伪造攻击等安全属性。
In order to improve the security and efficiency of the key agreement protocol, a secure one-pass and two-party authenticated key agreement protocol is proposed. In this protocol,a certificateless digital signature is sent to the receiver,in which the sender's public key,identification number,time stamp, and other identifiable information are signed. Then, the receiver verifies the variety of the digital signature. The session key is built by using the Diffie-Hellman key agreement protocol. The new protocol can be proved to be secure in random ora- cle model;it can also satisfy the properties of known session key secrecy, forward secrecy,uncontrollability of the session key and key compromise impersonation resilience.
出处
《河南理工大学学报(自然科学版)》
CAS
北大核心
2017年第5期89-94,共6页
Journal of Henan Polytechnic University(Natural Science)
基金
国家自然科学基金资助项目(61272525)
河南省基础与前沿技术研究项目(152300410129)
河南省高等学校重点科研项目(16A520096)
郑州轻工业学院2015年研究生科技创新基金资助项目
关键词
无证书数字签名
单向可认证
密钥协商
前向安全
Certificateless digital signature, authentication, key agreement, forward secrecy
