标准模型下安全的基于证书密钥封装方案

doi:10.3969/j.issn.0372-2112.2012.08.013

电子学报

标准模型下安全的基于证书密钥封装方案

李继国, 杨海珊, 张亦辰

河海大学计算机与信息学院, 江苏南京 211000

收稿日期:2011-08-23 修回日期:2012-01-19 出版日期:2012-08-25
- 作者简介:
- 李继国 男,1970年生于黑龙江省富裕县,博士,教授,博士生导师,主要研究领域为信息安全、密码学理论与技术、可信计算等. E-mail:ljg1688@163.com 杨海珊 女,1985年生于山西省吕梁市,硕士,主要研究领域为密码学理论与技术.
- 基金资助:
- 国家自然科学基金 (No.60842002,61103183,61103184); 中国博士后基金 (No.20100471373); 江苏省"六大人才高峰"项目 (No.2009182); 中央高校基本科研业务费专项资金资助项目 (No.2009B21114,2010B07114); 河海大学优秀创新人才支持计划

Certificate-Based Key Encapsulation Mechanism Secure in the Standard Model

LI Ji-guo, YANG Hai-shan, ZHANG Yi-chen

College of Computer and Information Engineering, Hohai University, Nanjing, Jiangsu 211000, China

Received:2011-08-23 Revised:2012-01-19 Online:2012-08-25 Published:2012-08-25
- Supported by:
- National Natural Science Foundation of China (No.60842002, 61103183, 61103184); Post-doctoral Foundation of China (No.20100471373); Six Talents Peaks in Jiangsu Province (No.2009182); Fundamental Research Funds for the Central Universities (No.2009B21114, 2010B07114); Excellent Innovative Talent Program of Hohai University

摘要/Abstract

摘要： 混合加密是将公钥加密与对称加密结合的一种加密技术.将密钥封装机制引入到基于证书加密方案中,提出了基于证书密钥封装机制的形式化定义及安全模型,构造了一个基于证书密钥封装方案.基于判定双线性Diffie-Hellman困难问题假定,在标准模型下证明提出的方案是自适应选择密文安全的.

关键词: 密钥封装机制, 基于证书加密, 标准模型, 双线性对

Abstract: A hybrid construction is a formal method of combining asymmetric encryption and symmetric encryption.By introducing key encapsulation mechanism into certificate-based encryption scheme,we propose a formal definition and security model of the certificate-based key encapsulation mechanism.Furthermore,we present a construction of the certificate-based key encapsulation scheme.Based on decision bilinear Diffie-Hellman difficulty assumption,the proposed scheme is provably secure against indistinguishability under adaptive chosen-ciphertext attack in the standard model.

Key words: key encapsulation mechanism, certificate-based encryption, standard model, bilinear pairing

中图分类号:

TP309

李继国, 杨海珊, 张亦辰. 标准模型下安全的基于证书密钥封装方案[J]. 电子学报, DOI: 10.3969/j.issn.0372-2112.2012.08.013.

LI Ji-guo, YANG Hai-shan, ZHANG Yi-chen . Certificate-Based Key Encapsulation Mechanism Secure in the Standard Model[J]. Acta Electronica Sinica, DOI: 10.3969/j.issn.0372-2112.2012.08.013.

参考文献

[1] Gentry C.Certificate-based encryption and the certificate revocation problem.Eurocrypt’2003.Berlin:Springer-Verlag,2003.272-293.

[2] Balfe S,Gallery E,Mitchell C J.Challenges for trusted computing[J].IEEE Security & Privacy,2008,6(6):60-66.

[3] Yum D H,Lee P J.Identity-based cryptography in public key management.EuroPKI’2004.Berlin:Springer-Verlag,2004.71-84.

[4] Galindo D,Morillo P,Ràfols C.Breaking Yum and Lee generic constructions of certificateless and certificate-based encryption schemes.EuroPKI’2006.Berlin:Springer-Verlag,2006.81-91.

[5] Al-Riyami S S,Paterson K.CBE from CL-PKE:A generic construction and efficient schemes.PKC’2005.Berlin:Springer-Verlag,2005.398-415.

[6] Galindo D,Morillo P,Ràfols C.Improved certificate-based encryption in the standard model[J].Journal of Systems and Software,2008,81(7):1218-1226.

[7] Waters B.Efficient identity-based encryption without random oracles.Eurocrypt’2005.Berlin:Springer-Verlag,2005.114-127.

[8] Liu J K,Zhou J Y.Efficient certificate-based encryption in the standard model.SCN’2008.Berlin:Springer-Verlag,2008.144-155.

[9] Gentry C.Practical identity-based encryption without random oracles.Eurocrypt’2006.Berlin:Springer-Verlag,2006.445-464.

[10] Boneh D,Joux A,Nguyen A.Why textbook ElGamal and RSA encryption are insecure.Aisacrypt’ 2000.Berlin:Springer-Verlag,2000.30-43.

[11] Cramer R,Shoup V.Design and analysis of practical public-key encryption schemes secure against adaptive chosen ciphertext attack[J].SIAM Journal on Computing,2003,33(1):167-226.

[12] Kurosawa K,Desmedt Y.A new paradigm of hybrid encryption scheme.Crypto’2004.Berlin:Springer-Verlag,2004.426-442

[13] Abe M,Gennaro R,Kurosawa K.Tag-KEM/DEM:A new framework for hybrid encryption and a new analysis of Kurosawa-Desmedt KEM.Eurocrypt’2005.Berlin:Springer-Verlag,2005.128-146.

[14] Dent A.A designer’s guide to KEMs.Cryptography and Coding 2003.Berlin:Springer-Verlag,2003.133-151.

[15] Bentahar K,Farshim P,Malone-Lee J.Generic constructions of identity-based and certificateless KEMs[J].Journal of Cryptology,2008,21(2):178-199.

[16] Chen L,Cheng Z,Malone-Lee J.An efficient ID-KEM based on the Sakai-Kasahara key construction[J].IEE Proceedings-Information Security,2006,153(1):19-26.

[17] Huang Q,Wong D S.Generic certificateless key encapsulation mechanism.ACISP’2007.Berlin:Springer-Verlag,2007.215-229.

[18] Kiltz E,Galindo D.Direct chosen-ciphertext secure identity-based key encapsulation without random oracles.ACISP’ 2006.Berlin:Springer-Verlag,2006.336-347.

[19] Long Y,Li X X,Chen K F.Distributed certificateless key encapsulation mechanism secure against the adaptive adversary[J].Shanghai Jiaotong Univ.(Sci.),2009,14(1):102-106.

[20] Nieto J G,Lippold G,Boyd C.Efficient certificateless KEM in the standard model.ICISC’2009.Berlin:Springer-Verlag,2010.34-46.

[21] Li J G,Huang X Y,Mu Y,Susilo W,Wu Q H.Constructions of certificate-based signature secure against key replacement attacks[J].Journal of Computer Security,2010,18(3):421-449.

[22] Li J G,Huang X Y,Mu Y,Susilo W,Wu Q H.Certificate-based signature:security model and efficient construction.EuroPKI’2007.Berlin:Springer-Verlag,2007.110-125.

[23] Li J G,Huang X Y,Zhang Y C,Xu L Z.An efficient short certificate-based signature scheme[J].Journal of Systems and Software,2012,85(2):314-322.

[24] 李继国,孙刚,张亦辰.标准模型下可证安全的本地验证者撤销群签名方案[J].电子学报,2011,20(7):1618-1623. Li J G,Sun G,Zhang Y C.Provably secure group signature scheme with verifier-local revocation in the standard model[J].Acta Electronica Sinica,2011,20(7):1618-1623.(in Chinese)

[25] 桑永宣,曾吉文.两种无证书的分布环签名方案[J].电子学报,2008,36(7):1468-1472. Sang Y X,Zeng J W.Two certificateless distributed ring signature schemes[J].Acta Electronica Sinica,2008,36(7):1468-1472.(in Chinese)

[26] 黄欣沂,张福泰,伍玮.一种基于身份的环签密方案[J].电子学报,2006,34(2):263-266. Huang X Y,Zhang F T,Wu W.An identity-based ring signcryption scheme[J].Acta Electronica Sinica,2006,34(2):263-266.(in Chinese)

标准模型下安全的基于证书密钥封装方案

Certificate-Based Key Encapsulation Mechanism Secure in the Standard Model

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	戚珉, 陈明. 标准模型下基于身份的混淆乐观公平交换方案[J]. 电子学报, 2020, 48(8): 1516-1527.
[2]	杨启良, 周彦伟, 杨坤伟, 王涛. 标准模型下可公开验证的匿名IBE方案的安全性分析[J]. 电子学报, 2020, 48(2): 291-295.
[3]	丁勇, 王冰尧, 袁方, 王玉珏, 张昆, 田磊. 支持第三方仲裁的智能电网数据安全聚合方案[J]. 电子学报, 2020, 48(2): 350-358.
[4]	巩林明, 李顺东, 窦家维, 王道顺. 标准模型下抗CPA与抗CCA2的RSA型加密方案[J]. 电子学报, 2018, 46(8): 1938-1946.
[5]	赵艳琦, 来齐齐, 禹勇, 杨波, 赵一. 标准模型下基于身份的环签名方案[J]. 电子学报, 2018, 46(4): 1019-1024.
[6]	吴涛, 景晓军. 一种强不可伪造无证书签名方案的密码学分析与改进[J]. 电子学报, 2018, 46(3): 602-606.
[7]	莫若, 马建峰, 刘西蒙, 张涛. 一种支持树形访问结构的属性基可净化签名方案[J]. 电子学报, 2017, 45(11): 2715-2720.
[8]	李继国, 张亦辰, 卫晓霞. 可证安全的基于证书广播加密方案[J]. 电子学报, 2016, 44(5): 1101-1110.
[9]	张宇, 陈晶, 杜瑞颖, 周庆, 郑明辉. 适于车载网安全通信的高效签密方案[J]. 电子学报, 2015, 43(3): 512-517.
[10]	陈明. 标准模型下可托管的基于身份认证密钥协商[J]. 电子学报, 2015, 43(10): 1954-1962.
[11]	李琦, 马建峰, 熊金波, 刘西蒙, 马骏. 一种素数阶群上构造的自适应安全的多授权机构CP-ABE方案[J]. 电子学报, 2014, 42(4): 696-702.
[12]	马春光, 石岚, 周长利, 汪定. 属性基门限签名方案及其安全性研究[J]. 电子学报, 2013, 41(5): 1012-1015.
[13]	明洋, 王育民. 标准模型下可证安全的通配符基于身份加密方案[J]. 电子学报, 2013, 41(10): 2082-2086.
[14]	葛爱军, 马传贵, 程庆丰. 标准模型下CCA2安全且固定密文长度的模糊基于身份加密方案[J]. 电子学报, 2013, 41(10): 1948-1952.
[15]	杜红珍, 黄梅娟, 温巧燕. 高效的可证明安全的无证书聚合签名方案[J]. 电子学报, 2013, 41(1): 72-76.