基于RLWE问题的后量子口令认证密钥交换协议

doi:10.12263/DZXB.20190101

电子学报 ›› 2021, Vol. 49 ›› Issue (2): 260-267.DOI: 10.12263/DZXB.20190101

基于RLWE问题的后量子口令认证密钥交换协议

李子臣¹, 谢婷^2,3, 张卷美²

1. 北京印刷学院, 北京 102600;
2. 北京电子科技学院, 北京 100070;
3. 西安电子科技大学通信工程学院, 陕西西安 710071

收稿日期:2019-01-16 修回日期:2020-07-17 出版日期:2021-02-25
- 通讯作者:
- 李子臣
- 基金资助:
- 国家自然科学基金 (No.61370188）; 北京市自然科学基金委员会与北京市教育委员会联合资助项目 (No.KZ201710015010）

Post Quantum Password-Based Authentication Key Exchange Protocol Based on Ring Learning with Errors Problem

LI Zi-chen¹, XIE Ting^2,3, ZHANG Juan-mei²

1. Beijing Institute of Graphic Communication, Beijing 102600, China;
2. Beijing Electronic Science&Technology Institute, Beijing 100070, China;
3. School of Telecommunications Engineering, Xidian University, Xi'an, Shaanxi 710071, China

Received:2019-01-16 Revised:2020-07-17 Online:2021-02-25 Published:2021-02-25

摘要/Abstract

摘要： 基于口令的认证密钥交换协议在现代通信网络中有很强的实用性.量子技术的迅速发展使得传统公钥密码体制的安全性面临严峻的形势，基于格理论构造密码系统已成为当前后量子密码研究的热点.本文基于格理论环上误差学习（RLWE）问题，使用Peikert式误差协调机制构造了一个C/S模式下的口令认证密钥交换协议（PAKE），设置了合理的参数保证双方以显著概率得到相同的会话密钥，并使用Java在Eclipse平台上进行了此协议的模拟实现.协议在C/S模式的PAKE安全模型下可证明安全，可抵御量子攻击，与现有的基于格理论设计的PAKE协议相比，通信量较低并且在安全度上有较强的优势，是一种简洁高效的后量子口令认证密钥交换协议.

关键词: 认证密钥交换, 环上误差学习问题, 格, 后量子

Abstract: Password-based authentication key exchange protocol is highly practical in modern communication networks.The rapid development of quantum technology has made the security of traditional public key cryptosystem face a severe situation.The construction of cryptosystem based on lattice theory has become a hot topic in the research of post-quantum cryptography.The scheme is based on the lattice theory error learning (RLWE) problem,and uses the Peikert error reconciliation mechanism to construct a password authentication key exchange(PAKE) protocol in C/S mode.Reasonable parameters are set to ensure that both parties get the same session key with significant probability,and by using Java to implement PAKE protocol on the Eclipse platform.The security of the protocol is proved under the standard BPR model and can withstand quantum attacks.Compared with the existing PAKE protocol based on lattice theory,the proposed protocol has lower communication and better security.It is a simple and efficient post-quantum password authentication key exchange protocol.

Key words: authenticated key exchange protocol, ring learning with errors, lattice, post quantum

中图分类号:

李子臣, 谢婷, 张卷美. 基于RLWE问题的后量子口令认证密钥交换协议[J]. 电子学报, 2021, 49(2): 260-267.

LI Zi-chen, XIE Ting, ZHANG Juan-mei. Post Quantum Password-Based Authentication Key Exchange Protocol Based on Ring Learning with Errors Problem[J]. Acta Electronica Sinica, 2021, 49(2): 260-267.

参考文献

[1] Dodis Y,Mironov I,Stephens-Davidowitz N.Message transmission with reverse firewalls-secure communication on corrupted machines[A].International Cryptology Conference[C].Berlin,GER:Springer-Verlag,2016.341-372.
[2] Diffie W,Hellman M.New directions in cryptography[J].IEEE Transactions on Information Theory,1976,22(6):644-654.
[3] Victor B,Philip M,Sarvar P.Provably secure password-authenticated key exchange using diffie-hellman[A].Theory and Application of Cryptographic Techniques[C].Berlin,GER:Springer-Verlag,2000.156-171.
[4] Hao F.J-PAKE:password-authenticated key exchange by juggling[EB/OL].https://www.rfc-editor.org/info/rfc8236,2017:1-15.
[5] Harkins D.Secure pre-shared key (PSK) authentication for the internet key exchange protocol (IKE)[J].Educause Quarterly,2012,50(4):725-726.
[6] Wu T D.The secure remote password protocol[A].Network and Distributed System Security Symposium[C].Berlin,GER:Springer-Verlag,1998.97-111.
[7] Steven M,Michael J.Cryptographic protocol for remote authentication[P].USA:US5440635 A,1995.
[8] David P.Cryptographic methods for remote authentication[P].USA:US7010692B2,2006.
[9] Katz J,Vaikuntanathan V.Smooth projective hashing and password-based authenticated key exchange from lattices[A].International Conference on the theory and Application of Cryptology and Information Security[C].Berlin,GER:Springer-Verlag,2009.636-652.
[10] Katz J,Ostrovsky R,Yung M,et al.Efficient password-authenticated key exchange using human-memorable passwords[A].Theory and Application of Cryptographic Techniques[C].Berlin,GER:Springer-Verlag,2001.475-494.
[11] Gennaro R,Lindell Y.A framework for password-based authenticated key exchange[A].Theory and Application of Cryptographic Techniques[C].Berlin,GER:Springer-Verlag,2003.524-543.
[12] 胡学先.标准模型下口令认证密钥交换协议的分析与设计[D].解放军信息工程大学,2010.
[13] Ding Y,Fan L.Efficient password-based authenticated key exchange from lattices[A].Computational Intelligence and Security[C].New York,USA:IEEE,2011.934-938.
[14] Groce A,Katz J.A new framework for efficient password-based authenticated key exchange[A].ACM Conference on Computer and Communications Security[C].New York,USA:ACM,2010.516-525.
[15] Ding J,Alsayigh S,Lancrenon J,et al.Provably secure password authenticated key exchange based on RLWE for the post-quantum world[A].The Cryptographers' track at the RSA Conference[C].Berlin,GER:Springer-Verlag,2017.183-204.
[16] Gao X,Ding J,Li L,et al.Efficient implementation of password-based authenticated key exchange from RLWE and post-quantum TLS[J].IACR Cryptology ePrint Archive,2017:1192-1199.
[17] Gao X,Ding J,Liu J,et al.Post-quantum secure remote password protocol from RLWE problem[A].International Conference on Information Security and Cryptology[C].Berlin,GER:Springer-Verlag,2017.99-116.
[18] Lyubashevsky V,Peikert C,Regev O.On ideal lattices and learning with errors over rings[A].International Cryptology Conference[C].Berlin,GER:Springer-Verlag,2010.1-23.
[19] Applebaum B,Cash D,Peikert C,et al.Fast cryptographic primitives and circular-secure encryption based on hard learning problems[A].International Cryptology Conference[C].Berlin,GER:Springer-Verlag,2009.595-618.
[20] Hoffstein J,Pipher J,Silverman J H,et al.NTRU:A ring-based public key cryptosystem[A].Algorithmic Number Theory Symposium[C].Berlin,GER:Springer-Verlag,1998.1423:267-288.
[21] Peikert C.Lattice cryptography for the Internet[A].International Workshop on Post-Quantum Cryptography[C].Berlin,GER:Springer-Verlag,2014.8772:197-219.
[22] Ding J,Universuty C.A simple provably secure key exchange scheme based on the learning with errors problem[J].IACR Cryptology ePrint Archive,2012:688-702.
[23] Xun Y,Tso R,Okamoto E.Identity-based password-authenticated key exchange for client/server model[A].International Conference on Security and Cryptography[C].Berlin,GER:Springer-Verlag,2012.45-54.

基于RLWE问题的后量子口令认证密钥交换协议

Post Quantum Password-Based Authentication Key Exchange Protocol Based on Ring Learning with Errors Problem

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	尹安琪, 曲彤洲, 郭渊博, 汪定, 陈琳, 李勇飞. 格上基于密文标准语言的可证明安全两轮口令认证密钥交换协议[J]. 电子学报, 2022, 50(5): 1140-1149.
[2]	吕明久, 马建朝, 韦旭, 陈文峰, 杨军, 马晓岩. 基于矩阵化原子范数的高频雷达距离-多普勒二维估计方法[J]. 电子学报, 2022, 50(5): 1150-1158.
[3]	杨曦, 张鑫, 郭浩远, 王楠楠, 高新波. 基于不变特征的多源遥感图像舰船目标检测算法[J]. 电子学报, 2022, 50(4): 887-899.
[4]	张凌明, 赵悦, 李鹏程, 刘洋, 高陈强. 基于局部注意力机制的三维牙齿模型分割网络[J]. 电子学报, 2022, 50(3): 681-690.
[5]	王祎心, 魏兵, 范凯航, 李益文, 魏小龙. 无条件稳定FETD方法中亚网格技术的研究[J]. 电子学报, 2022, 50(11): 2799-2805.
[6]	智慧来, 张丽, 李金海. 旁观者视角下粒的多层次描述[J]. 电子学报, 2022, 50(11): 2568-2574.
[7]	于建立, 樊亚东, 周蜜, 蔡力. 云—地闪电地面水平电场在不同回击速度和地电参数时的波形特性[J]. 电子学报, 2021, 49(8): 1633-1640.
[8]	刘镇, 吴立强, 韩益亮, 杨晓元, 柳曙光. 一种基于环上LWE的广义签密方案[J]. 电子学报, 2021, 49(7): 1314-1322.
[9]	史芳静, 樊养余, 王鑫圆, 高永胜. 基于相位调制器的光子射频自干扰消除系统[J]. 电子学报, 2021, 49(10): 1900-1907.
[10]	樊养余, 王武营, 刘曦春. 光载无线通信链路拉格朗日乘子线性度优化[J]. 电子学报, 2021, 49(10): 1927-1933.
[11]	吴立强, 韩益亮, 杨晓元, 张敏情, 杨凯. 基于理想格的鲁棒门限代理重加密方案[J]. 电子学报, 2020, 48(9): 1786-1794.
[12]	郭红伟, 朱策, 刘宇洋. 视频编码率失真优化技术研究综述[J]. 电子学报, 2020, 48(5): 1018-1029.
[13]	王金艳, 胡春, 牛当当, 李先贤. 基于IAPS的扩展规则局部搜索算法[J]. 电子学报, 2020, 48(5): 899-905.
[14]	史聪伟, 赵杰煜, 陈瑜. 利用网格卷积特征的三维形变目标分类[J]. 电子学报, 2020, 48(4): 648-653.
[15]	李大锦, 高文冉, 高俊杰. 基于kuwahara滤波的视频风格化框架[J]. 电子学报, 2020, 48(3): 538-544.