摘要
针对服务器直接以明文的方式存储口令,存在服务器泄露的风险,基于两方的基于格的口令认证密钥交换(PAKE)协议不适用于大规模通信系统的问题,提出了一种格上基于验证元的三方口令认证密钥交换协议。通过随机口令哈希方案生成验证元,并结合口令策略检查机制实现口令的检查,利用基于格的CCA安全公钥加密体制构造一个新的基于验证元的3PAKE协议,同时实现用户与服务器的双向认证。安全性和性能分析证明了所提协议在通信效率和安全度上都具有较好的优势。
In view of the fact that server stored the passwords directly in plaintext,there was a risk of server compromise,and two-party PAKE protocol was not suitable for large-scale communication systems,a three-party verifier-based password authenticated key exchange protocol from lattices was proposed.Hashing scheme and zero-knowledge password policy check were combined to realize the generation of verifier and the password checking.A novel verifier-based 3PAKE protocol was constructed by using CCA-secure public-key encryption from lattices,which realized mutual authentication.Security and performance analysis shows that the proposed protocol has better advantages in communication efficiency and security.
作者
廉欢欢
侯慧莹
赵运磊
LIAN Huanhuan;HOU Huiying;ZHAO Yunlei(College of Computer Science and Technology,Fudan University,Shanghai 200433,China;State Key Laboratory of Integrated Services Networks,Xidian University,Xi’an 710071,China)
出处
《通信学报》
EI
CSCD
北大核心
2022年第4期95-106,共12页
Journal on Communications
基金
国家自然科学基金资助项目(No.U1536205,No.61472084)
国家重点研发计划基金资助项目(No.2017YFB0802000)
上海市创新行动计划基金资助项目(No.16DZ1100200)
上海市科学技术发展基金资助项目(No.16JC1400801)
上海市科委技术标准基金资助项目(No.21DZ2200500)
山东省重点研发计划基金资助项目(No.2017CXG0701,No.2018CXGC0701)。
关键词
三方密钥交换
口令认证
验证元
格
可证明安全
three-party key exchange
password authentication
verifier
lattice
provable security
