以無雙線性對為基準的無權證跨領域密鑰協商

無權證公鑰密碼學解決現存密碼系統的密鑰託管問題，且用戶公鑰不需使用權證，因此非常適合通信網路的密鑰交換應用。我們發現若敵人以公開訊息的組合當作替換的公鑰，這將會使得密鑰協商不如預期的安全，在此論文我們提出無權證跨領域密鑰協商機制以解決此問題，為了降低運算複雜度，此機制以無雙線性對為基準，因此通信雙方各需6次橢圓曲線點乘運算，就可計算會話密鑰。為驗證所提機制的安全性，我們以理論證明只要通信雙方各存在一個安全的秘密訊息，則我們所提的機制是安全無慮，可以防禦公開訊息替換公鑰的攻擊。

關鍵字

無權證；密鑰協商；跨領域；無雙線性對

並列摘要

We find an attack that use public information combination to replace public key, which lead to some certificateless key agreement scheme is not secure. In this paper, we propose a certificateless key agreement for acrossing administrative domains without bilinear pairing to resolve the above problem. Our scheme is secure as long as each user has at least one secure secret. Our scheme proposes that each user needs 6 times of elliptic curve scalar multiplication for computing session key, and it can resist attack that use public information combination to replace public key.

並列關鍵字

Certificateless ； Key Agreement ； Acrossing Administrative Domains ； Without Pairing

參考文獻

[4] J. Baek, R. Safavi-Naini and W. Susilo, "Certificateless public key encryption without pairing," 8th Information Security Conference, Singapore, 2005, pp. 134-148.

[2] A. Shamir. "Identity-based cryptosystems and signature schemes," Advances in Cryptology, 1984, pp. 47-53.

[3] S. S. Al-Riyami and K. G. Paterson, "Certificateless public key cryptography, " ASIACRYPT 2003, Taipei, Taiwan, 2003, LNCS 2894,pp. 452−473.

[5] D. H. Yum and P. J. Lee, "Generic Construction of Certificateless Signature," 9th Australasian Conference Information Security and Privacy, Sydney, Australia, 2004, pp.324-337.

[11] M. Chen, K. Wu, J. Du and J. Xu, "A Certificateless and Across Administrative Domains Authenticated Key Exchange Scheme for E-payment," Journal of Software, vol. 6, no. 10, 2011, pp. 1985-1992.

國際替代計量

以無雙線性對為基準的無權證跨領域密鑰協商

全文下載

主題瀏覽