电子学报 ›› 2016, Vol. 44 ›› Issue (5): 1101-1110.DOI: 10.3969/j.issn.0372-2112.2016.05.013

• 学术论文 • 上一篇    下一篇

可证安全的基于证书广播加密方案

李继国, 张亦辰, 卫晓霞   

  1. 河海大学计算机与信息学院, 江苏南京 210098
  • 收稿日期:2014-07-29 修回日期:2014-11-28 出版日期:2016-05-25
    • 通讯作者:
    • 李继国
    • 作者简介:
    • 张亦辰 女,1971年生于黑龙江齐齐哈尔,学士,博士研究生,讲师,主要研究领域为密码学理论与技术.
    • 基金资助:
    • 国家自然科学基金 (No.61272542); 中央高校基本科研项目 (No.2013B07014)

A Provably Secure Certificate-Based Broadcast Encryption Scheme

LI Ji-guo, ZHANG Yi-chen, WEI Xiao-xia   

  1. College of Computer and Information Engineering, Hohai University, Nanjing, Jiangsu 210098, China
  • Received:2014-07-29 Revised:2014-11-28 Online:2016-05-25 Published:2016-05-25

摘要:

广播加密可使发送者选取任意用户集合进行广播加密,只有授权用户才能够解密密文.但是其安全性依赖广播中心产生和颁布群成员的解密密钥.针对这一问题,本文提出基于证书广播加密的概念,给出了基于证书广播加密的形式化定义和安全模型.结合基于证书公钥加密算法的思想,构造了一个高效的基于证书广播加密方案,并证明了方案的安全性.在方案中,用户私钥由用户自己选取,证书由认证中心产生,解密密钥由用户私钥和证书两部分组成,克服了密钥托管的问题.在方案中,广播加密算法中的双线性对运算可以进行预计算,仅在解密时做一次双线性对运算,提高了计算效率.

关键词: 广播加密, 基于证书加密, 双线性对

Abstract:

Broadcast encryption allows a sender to securely broadcast to any subset of the group members.However, its security heavily depends on broadcast centre to generate and distribute decryption secret keys for group members.In order to solve the above problem, we propose the notion of certificate-based broadcast encryption, describe the formal definition and security model of the certificate-based broadcast encryption.Furthermore, we also provide an efficient certificate-based broadcast encryption scheme.In our scheme, the decryption key includes user's private key and a certificate, where the private key is chosen by user himself, and the certificate is generated by certification authority.Therefore, our scheme overcomes the key escrow problem.In addition, our scheme is efficient, because it needs only one paring in decryption algorithm and paring operation in encryption algorithm can be pre-computed.

Key words: broadcast encryption, certificate-based encryption, bilinear paring

中图分类号: