摘要
针对传统对称密钥生成协议存在的算法复杂、效率低、安全隐患多等问题,利用椭圆曲线密码体制生成密钥的优势,在用户密钥生成过程中运用用户临时公钥、注册中心私钥以及注册中心产生的随机数和用户的ID来进行两次哈希运算,为每个用户生成一对安全可靠的公私钥。在用户通信的过程中,利用双方的时间标签来区分消息有效性,并且把时间标签、用户ID、用户公钥进行哈希运算,通过交换双方哈希值等信息,安全协商出双方共享密钥,并验证了协议的安全性和有效性。
In view of the traditional symmetric secret key generation protocol is complex,the efficiency is low,and there are many hidden dangers in security.Taking advantage of elliptic curve cryptosystem to generate secret key,user temporary public key,registry private key,random number generated by registry and user's ID are used in the process of user secret key generation to perform two hash operations,Generate a pair of secure and reliable public and private keys for each user.In the process of user communication,the time tag of both sides is used to distinguish the validity of the message,and the time tag and the user ID,user public key are hashed,and the shared secret key is safely negotiated through the exchange of information such as the hash value of both sides.The security and validity of the key generation protocol are verified.
作者
赵开新
张俊英
孟少迪
ZHAO Kaixin;ZHANG Junying;MENG Shaodi(School of Computer Science and Technology,Henan Institute of Technology,Xinxiang 453003,China;Intelligent Industry Big Data Application Engineering Technology Research Center of Xinxiang,Xinxiang 453003,China;College of Food&Bioengineering,Henan University of Science and Technology,Luoyang 471000,China)
出处
《河南工学院学报》
CAS
2021年第2期52-56,共5页
Journal of Henan Institute of Technology
基金
河南省科技攻关项目(202102210153,192102210113,192102210248),河南工学院2019校级教改项目(2019JG-YB035)。
关键词
椭圆曲线
密钥
物联网
会话
elliptic curve
secret key
internet of things
session
