摘要
提出了一种电子邮件IBE加密方案。方案采用了伪RSA密钥和IBE插件技术。伪RSA密钥是一种存放有用户标识即邮箱地址的假的RSA密钥数据。在伪RSA密钥基础上,引入自签发的伪RSA数字证书以及IBE密码模块。伪RSA数字证书的公钥是伪RSA公钥。IBE插件插入到电子邮件客户端中,当用户发送加密邮件时,IBE插件自动插入邮件加密所需的伪RSA数字证书,当用户读取加密邮件时,IBE插件自动插入邮件解密所需的用户带私钥的伪RSA数字证书;IBE密码模块将邮件客户端使用伪RSA数字证书及私钥所进行的密码运算转化为使用IBE密钥的密码运算,由此实现电子邮件的IBE加密、解密而无需对邮件客户端作任何修改。
An email IBE encryption scheme which employs pseudo-RSA keys and IBE plug-ins is proposed.A pseudo-RSA key is a kind of fake RSA key data with an identifier or email address of a user inside it.With the pseudoRSA keys,self-issued pseudo-RSA digital certificates and IBE cryptographic modules are introduced.The public key of a pseudo-RSA digital certificate is a pseudo-RSA public key.An IBE plug-in is plugged into an email client.When the user sends an encrypted email,the IBE plug-in automatically generates the pseudo-RSA digital certificates that are needed in the email encryptions.When a user reads an encrypted email,the IBE plug-in automatically generates the user's pseudo-RSA digital certificate with a private key.The IBE cryptographic module converts the cryptographic computations triggered by the email client in using the pseudo-RSA certificate and its private into the cryptographic computations with the corresponding IBE keys.As a result,emails encryptions and decryptions with IBE are achieved.The proposed scheme enables an email client to implement secure email with IBE without modifications.
作者
龙毅宏
黄强
王维
LONG Yi-hong;HUANG Qiang;WANG Wei(School of Information Engineering,Wuhan University of Technology,Wuhan 430070,China)
出处
《软件》
2018年第2期1-6,共6页
Software
基金
国家科技支撑计划项目课题(2014BAH26F03)
