一个具有多个注册中心的双向认证与密钥协商协议

doi:10.3969/j.issn.0372-2112.2018.10.015

摘要
图/表
参考文献(0)
相关文章 (15)

全文: PDF (462 KB) HTML (1 KB)
输出: BibTeX | EndNote (RIS)

摘要当前许多双向认证与密钥协商（MAKA）协议不具有高效的撤销机制，同时不能抵抗一些新型攻击，如随机数泄露（ESL）攻击、注册中心泄露注册信息（RCDRI）攻击.另一方面，大量的MAKA协议都是基于一个注册中心（RC），这无疑对RC高效性和稳定性是个挑战.本文基于以上问题，结合自认证公钥（SCPK）提出了一个具有多个注册中心的MAKA协议，该协议能够抵抗上述的新型攻击并且具有动态的撤销机制.基于Diffie-Hellman困难假设，在随机预言机模型中给出了协议的安全性证明.由于该协议不涉及双线性对运算，比以往同类型方案在执行效率方面也有很大的优势.

	服务

	把本文推荐给朋友
	加入我的书架
	加入引用管理器
	E-mail Alert
	RSS
	作者相关文章
	李雪莲
	李伟
	高军涛
	王海玉

关键词 ：多服务器环境, 多注册中心, 随机数泄露攻击, 注册中心不可信, 自认证公钥, 撤销动态

Abstract：Most of the current Mutual Authentication and Key Agreement (MAKA) protocols fail to provide effective revocation mechanism and suffer from some new attacks,such as Ephemeral Secret Leakage (ESL) attack and Registration Center Disclosure Registration Information (RCDRI) attack.On the other hand,a large number of MAKA protocols are based on a Registration Center (RC),which is undoubtedly a challenge to RC efficiency and stability.Based on Self-Certified Public Key (SCPK),this paper proposes a MAKA protocol for multi-server environments with multi-registration centers.It is able to resist the new attacks and has efficient dynamic revocation mechanism.Based on the Diffie-Hellman assumption,the security proof of the proposed protocol is given in the random oracle model.Because the protocol does not involve bilinear pairings of operations,it has a great advantage in the implementation efficiency over the relevant schemes.

Key words： multi-server environment multi-registration center ephemeral secret leakage attack registration center disclosure information attack self-certified public key dynamic revocation

收稿日期: 2017-09-25

TP393

基金资助:国家重点研发计划（No.2016YFB0800601）；国家自然科学基金（No.61303217，No.61502372）

作者简介: 李雪莲,女,1979年生人,副教授.2010年获得密码学博士学位.研究方向为信息安全、密码函数与区块链.E-mail:xuelian202@163.com;李伟,男,1992年生人,硕士研究生.研究方向为认证协议设计与应用、网络安全.E-mail:liwei3013@126.com

引用本文:

李雪莲, 李伟, 高军涛, 王海玉. 一个具有多个注册中心的双向认证与密钥协商协议[J]. 电子学报, 2018, 46(10): 2418-2422. LI Xue-lian, LI Wei, GAO Jun-tao, WANG Hai-yu. A Mutual Authentication and Key Agreement Protocol with Multi-Registration Center. Acta Electronica Sinica, 2018, 46(10): 2418-2422.

链接本文:

http://www.ejournal.org.cn/CN/10.3969/j.issn.0372-2112.2018.10.015 或 http://www.ejournal.org.cn/CN/Y2018/V46/I10/2418

[1] Lamport L.Password authentication with insecure communication[J].Communications of the ACM,1981,24(24):770-772.
[2] He D.An efficient remote user authentication and key agreement protocol for mobile client-server environment from pairings[J].Ad Hoc Networks,2012,10(6):1009-1016.
[3] Tseng Y M,Huang S S,Tsai T T,et al.Anovel ID-based authentication and key exchange protocol resistant to ephemeral-secret-leakage attacks for mobile devices[J].International Journal of Distributed Sensor Networks,2015,2015:1-12.
[4] Choi K Y,Hwang J Y,Dong H L,et al.ID-based Authenticated Key Agreement for Low-Power Mobile Devices[M].Information Security and Privacy,DBLP,2005.494-505.
[5] Liao Y P,Wang S S.A secure dynamic ID based remote user authentication scheme for multi-server environment[J].Computer Standards & Interfaces,2009,31(1):24-29.
[6] Hsiang H C,Shih W K.Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment[J].Computer Standards & Interfaces,2009,31(6):1118-1123.
[7] Lee C C,Lin T H,Chang R X.A secure dynamic ID based remote user authentication scheme for multi-server environment using smart cards[J].Expert Systems with Applications,2011,38(11):13863-13870.
[8] Li X,Ma J,Wang W,et al.A novel smart card and dynamic ID based remote user authentication scheme for multi-server environments[J].Mathematical & Computer Modelling,2013,58(s 1-2):85-95.
[9] D Zhao,H Peng,et al.An efficient dynamic ID based remote user authentication scheme using self-certified public keys formulti-server environment,arXiv preprint arXiv:1305.6350[OL].http://arxiv.org/abs/1305.6350,2013-05.
[10] Chuang Y H,Tseng Y M.Towards generalized ID-based user authentication for mobile multi-server environment[J].International Journal of Communication Systems,2012,25(4):447-460.
[11] Han W,Zhu Z.An ID-based mutual authentication with key agreement protocol for multi-server environment on elliptic curve cryptosystem[J].International Journal of Communication Systems,2015,27(8):1173-1185.
[12] Islam S H.Aprovably secure ID-based mutual authentication and key agreement scheme for mobile multi-server environment without ESL attack[J].Wireless Personal Communications,2014,79(3):1975-1991.
[13] Tseng Y M,Huang S S,Tsai T T,et al.List-free ID-based mutual authentication and key agreement protocol for multiserver architectures[J].IEEE Transactions on Emerging Topics in Computing,2016,4(1):102-112.
[14] Liao Y P,Hsiao C M.A novel multi-server remote user authentication scheme using self-certified public keys for mobile clients[J].Future Generation Computer Systems,2013,29(3):886-900.
[15] Fleischhacker N,Jager T,Schröder D.On Tight Security Proofs for Schnorr Signatures[A].Advances in Cryptology-ASIACRYPT 2014[C].Springer Berlin Heidelberg,2014.512-531.