标准模型下可托管的基于身份认证密钥协商

doi:10.3969/j.issn.0372-2112.2015.10.012

电子学报 ›› 2015, Vol. 43 ›› Issue (10): 1954-1962.DOI: 10.3969/j.issn.0372-2112.2015.10.012

标准模型下可托管的基于身份认证密钥协商

陈明

宜春学院数学与计算机科学学院, 江西宜春 336000

收稿日期:2014-11-15 修回日期:2015-06-15 出版日期:2015-10-25
- 作者简介:
- 陈明男,1978年5月出生,重庆北碚人.2003年、2007年和2011年在重庆大学分别获工学学士、工学硕士和工学博士学位.现为宜春学院数学与计算机科学学院教师,从事信息安全、安全协议分析与设计等方面的研究工作.E-mail:chenming9824@aliyun.com
- 基金资助:
- 江西省自然科学基金 (No.2014ZBAB207022)

Escrowable Identity-Based Authenticated Key Agreement in the Standard Model

CHEN Ming

School of Mathematics and Computer Science, Yichun University, Yichun, Jiangxi 336000, China

Received:2014-11-15 Revised:2015-06-15 Online:2015-10-25 Published:2015-10-25
- Supported by:
- Natural Science Foundation of Jiangsu Province, China (No.2014ZBAB207022)

摘要/Abstract

摘要：

现有会话密钥可托管的ID-AKA(IDentity-based Authenticated Key Agreement)协议要么存在已知安全缺陷,要么是在随机预言模型下可证明安全.基于Boneh等人定义的安全陷门函数,提出一种会话密钥可托管的ID-AKA协议.在ID-BJM模型基础上,扩展定义了ID-AKA协议分析的标准安全模型.扩展模型将安全游戏划分为两个阶段,去除了随机预言机,能完备地模拟不同类型敌手的行为.在扩展模型下,新协议的安全性被规约为多项式时间敌手求解判定性BDH(Bilinear Diffie-Hellman)难题和判定性BDHI(Bilinear Diffie-Hellman Inversion)难题,具有可证明安全性.

关键词: 认证密钥协商, 基于身份密码体制, 双线性映射, 标准模型, 密钥托管

Abstract:

In recent years, a few escrowable ID-AKA protocols have been proposed, but none of them are provably secure in the standard model while simultaneously having strong security.The main issue is how a simulator is able to deal with reveal-queries without the help of random oracles.In this paper, we presented a method incorporating a built-in security trapdoor function in an escrowable ID-AKA protocol.The security of our protocol relied on the hardness of the decisional Bilinear Diffie-Hellman Inversion problem.Meanwhile, we extended the security game of ID-AKA protocols to resist stronger adversarial powers, which allowed our security game to capture additional security properties such as perfect forward secrecy, ephemeral secrets reveal resistance and so on.Assuming that no adversary can obtain the master secret key and each party in the protocol has at least one uncompromised secret, our scheme is secure.

Key words: authenticated key agreement, identity-based cryptography, bilinear pairing, standard model, key escrow

中图分类号:

TP309

陈明. 标准模型下可托管的基于身份认证密钥协商[J]. 电子学报, 2015, 43(10): 1954-1962.

CHEN Ming . Escrowable Identity-Based Authenticated Key Agreement in the Standard Model[J]. Acta Electronica Sinica, 2015, 43(10): 1954-1962.

参考文献

[1] Boneh D,Franklin M.Identity-based encryption from the weil pairing[A].Proceedings of the CRYPTO (LNCS 2139)[C].Berlin:Springer,2001.213-229.
[2] 钟欢,许春香.基于身份的多方认证组密钥协商协议[J].电子学报,2008,36(10):1869-1872. Zong Huan,Xu Chun-xiang.ID-basedmulti-party authenticated key agreement protocols using multilinear forms[J].Acta Electronica Sinica,2008,36(10):1869-1872.(in Chinese)
[3] 王竹,戴一奇,叶顶锋.普适安全的基于身份的签名机制[J].电子学报,2011,39(7):1613-1617. Wang Zhu,Dai Yi-qi,Ye Ding-feng.Universally composable identity-based signature[J].Acta Electronica Sinica,2011,39(7):1613-1617.(in Chinese)
[4] 明洋,王育民.标准模型下可证安全的通配符基于身份加密方案[J].电子学报,2013,41(10):2082-2086. Ming Yang,Wang Yu-min.Provably secure identity-based encryption scheme with wildcard in the standard model[J].Acta Electronica Sinica,2013,41(10):2082-2086.(in Chinese)
[5] Shim K.Efficient ID-based authenticated key agreement protocol based on the Weil pairing[J].Electronics Letters,2003,39(8):653-654.
[6] Chen L,Cheng Z,Smart N.Identity-based key agreement protocols from pairings[J].International Journal of Information Security,2007,6(4):213-241.
[7] Chow S,Choo K-KR.Strongly-secure identity-based key agreement and anonymous extension[A].Proceedings of the ISC (LNCS 4779)[C].Berlin:Springer,2007.203-220.
[8] Wang SB,Cao ZF,Cheng ZH,Choo K-KR.Perfect forward secure identity-based authenticated key agreement protocol in the escrow mode[J].Science in China Series F:Information Sciences,2009,52(8):1358-1370.
[9] Huang H,Cao Z.An ID-based authenticated key exchange protocol based on bilinear Diffie-Hellman problem[A].Proceedings of the ACM ASIACCS[C].New York:ACM,2009.333-342.
[10] Fujioka A,Hoshino F,Kobayashi T,et al.Id-eCK secure ID-based authenticated key exchange on symmetric and asymmetric pairing[J].IEICE Transactions on Fundamentals of Electronics,Communications and Computer Sciences,2013,96(6):1139-1155.
[11] Pandit T,Barua R,Tripathy S.ECK secure single round ID-based authenticated key exchange protocols with master perfect forward secrecy[A].Proceedings of the 8th International Conference on Network and System Security (LNCS 8792)[C].Berlin:Springer,2014.435-447.
[12] Ni L,Chen GL,Li JH.Escrowable identity-based authenticated key agreement protocol with strong security[J].Computers & Mathematics with Applications,2013,65(9):1339-1349.
[13] 王圣宝,曹珍富,董晓蕾.标准模型下可证安全的身份基认证密钥协商协议[J].计算机学报,2007,30(10):1842-1852. Wang Sheng-Bao,Cao Zhen-Fu,Dong Xiao-Lei.Provably secure identity-based authenticated key agreement protocols in the standard model[J].Chinese Journal of Computers,2007,30(10):1842-1854.(in Chinese)
[14] 高志刚,冯登国.高效的标准模型下基于身份认证密钥协商协议[J].软件学报,2011,22(5):1031-1040. Gao Zhi-Gang,Feng Deng-Guo.Efficientidentity-based authenticated key agreement protocol in the standard model[J].Journal of Software,2011,22(5):1031-1040.(in Chinese)
[15] 汪小芬,陈原,肖国镇.基于身份的认证密钥协商协议的安全分析与改进[J].通信学报,2008,29(12):16-21. Wang Xiao-Fen,Chen Yuan,Xiao Guo-Zhen.Analysis and improvement of an ID-based authenticated key agreement protocol[J].Journal on Communications,2008,29(12):16-21.(in Chinese)
[16] 高海英.可证明安全的基于身份的认证密钥协商协议[J].计算机研究与发展,2012,49(8):1685-1689. Gao Hai-ying.Provable secure ID-based authenticated key agreement protocol[J].Journal of Computer Research and Development,2012,49(8):1685-1689.(in Chinese)
[17] 陈明.标准模型下增强的身份基认证密钥协商[J].计算机应用研究,2014,31(6):1869-1873. Chen Ming.Extended identity-based authenticated key agreement in standard model[J].Application Research of Computers,2014,31(6):1869-1873.(in Chinese)
[18] 任勇军,王建东,王箭,徐大专,庄毅.标准模型下基于身份的认证密钥协商协议[J].计算机研究与发展,2010,47(9):1604-1610. Ren Yong-jun,Wang Jian-dong,Wang Jian,Xu Da-zhuan,Zhuang Yi.Identity-based authenticated key agreement protocol in the standard model[J].Journal of Computer Research and Development,2010,47(9):1604-1610.(in Chinese)
[19] LaMacchia BA,Lauter K,Mityagin A.Stronger security of authenticated key exchange[A].Proceedings of the 1st International Conference on Provable Security (LNCS 4784)[C].Berlin:Springer,2007.1-16.
[20] Boneh D,Boyen X.Efficient selective identity-based encryption without random oracles[J].Journal of Cryptology,2011,24(4):659-693.

标准模型下可托管的基于身份认证密钥协商

Escrowable Identity-Based Authenticated Key Agreement in the Standard Model

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	张文芳, 雷丽婷, 王小敏, 王宇. 面向云服务的安全高效无证书聚合签名车联网认证密钥协商协议[J]. 电子学报, 2020, 48(9): 1814-1823.
[2]	戚珉, 陈明. 标准模型下基于身份的混淆乐观公平交换方案[J]. 电子学报, 2020, 48(8): 1516-1527.
[3]	杨启良, 周彦伟, 杨坤伟, 王涛. 标准模型下可公开验证的匿名IBE方案的安全性分析[J]. 电子学报, 2020, 48(2): 291-295.
[4]	丁勇, 王冰尧, 袁方, 王玉珏, 张昆, 田磊. 支持第三方仲裁的智能电网数据安全聚合方案[J]. 电子学报, 2020, 48(2): 350-358.
[5]	陈明. 移动漫游中强安全的两方匿名认证密钥协商方案[J]. 电子学报, 2019, 47(1): 16-24.
[6]	巩林明, 李顺东, 窦家维, 王道顺. 标准模型下抗CPA与抗CCA2的RSA型加密方案[J]. 电子学报, 2018, 46(8): 1938-1946.
[7]	赵艳琦, 来齐齐, 禹勇, 杨波, 赵一. 标准模型下基于身份的环签名方案[J]. 电子学报, 2018, 46(4): 1019-1024.
[8]	莫若, 马建峰, 刘西蒙, 张涛. 一种支持树形访问结构的属性基可净化签名方案[J]. 电子学报, 2017, 45(11): 2715-2720.
[9]	王小峰, 陈培鑫, 周寰, 苏金树. 一种可信安全的层次式基于身份加密系统[J]. 电子学报, 2016, 44(7): 1521-1529.
[10]	寻甜甜, 于佳, 杨光洋, 江秀秀, 郝蓉. 密钥隔离的无证书聚合签名[J]. 电子学报, 2016, 44(5): 1111-1116.
[11]	李琦, 马建峰, 熊金波, 刘西蒙, 马骏. 一种素数阶群上构造的自适应安全的多授权机构CP-ABE方案[J]. 电子学报, 2014, 42(4): 696-702.
[12]	马春光, 石岚, 周长利, 汪定. 属性基门限签名方案及其安全性研究[J]. 电子学报, 2013, 41(5): 1012-1015.
[13]	明洋, 王育民. 标准模型下可证安全的通配符基于身份加密方案[J]. 电子学报, 2013, 41(10): 2082-2086.
[14]	葛爱军, 马传贵, 程庆丰. 标准模型下CCA2安全且固定密文长度的模糊基于身份加密方案[J]. 电子学报, 2013, 41(10): 1948-1952.
[15]	李继国, 杨海珊, 张亦辰. 标准模型下安全的基于证书密钥封装方案[J]. 电子学报, 2012, 40(8): 1577-1583.