- 學位論文
通訊系統之密碼學秘密分享應用機制研究
Cryptography in Secret Sharing Schemes Applied to Communication Systems
摘要
利用雙線性函數搭配橢圓曲線密碼系統為目前之安全系統趨勢。相較於傳統的密碼學系統,在相同的位元長度下,橢圓曲線密碼系統將擁有較高的安全度。在此,我們提出兩個不同在通訊系統安全中之應用。 第一個是關於秘密分享。一些秘密將藉由分散給所有之使用者來保護其安全,只有合法之使用者才能將那些秘密還原回來。在我們的設計中,秘密可隨著時間作更替,而系統也會定期更新一些相關資訊,提升系統的安全性。而使用者之間所傳遞之訊息也可以被驗證,且使用者們只要固定持有一個私密資訊,再藉由系統所提供之訊息,使用者們也可以更新自己所持有的訊息。由於訊息是持續更新的,舊有的訊息將無助於解開秘密。 第二個是階層式金鑰管理系統。由於網路系統裡,金鑰的管理是很重要之一環,又目前許多網路中,金鑰管理並沒考慮階層的概念;而在現實生活中,階層卻是隨處可見的。因此,我們利用橢圓曲線密碼系統提出一個階層式金鑰管理。其系統特性是,階級高的使用者,可以推導出階層低的使用者之加密金鑰,藉此獲知相關訊息。 第三個是關於秘密分享的一個應用,模糊傳輸。我們將原本的一對一模糊傳輸拓展成為一對多,為一多接收端的系統。在我們所提出的方法中,我們不僅達成原本模糊傳輸的基本要求,也由於系統為多接收,因此接收端們也都無法得知其他接收端之取得訊息。我們最後更將該應用,使用在CDMA之通訊系統以及電子商務之中。
並列摘要
The bilinear mapping function used in the elliptic curve cryptography has been a new trend of cryptosystem. Because the cryptosystem bases on the elliptic curve cryptography will achieve higher level of security comparing with the original discrete logarithm problem in the same bits length. We propose two different kinds of application in communication and cryptography. First one is about the secret sharing. Some secrets are protected by distributing them among many participants, whereby only an authorized group of participants can reconstruct the secrets. In our scheme, the secret will change periodically and the dealer will periodically publish some of the information, in addition, the participants can verify the information which they have received. Each participant holds only one permanent, private secret, and some of them use it during different time periods to reconstruct the corresponding shared secrets without revealing their own private information. Because some public information is renewed in our scheme, the old information has nothing to do with the next secret. The second one is about the hierarchical key derivation. When constructing the network, the key management is the most important problem that each system has to solve. There are many key agreement protocols which are non-hierarchical. We have achieved a verifiable hierarchical key derivation scheme using the elliptic curve cryptography and the bilinear mapping function. The character of this scheme is that the user who has higher rank can derive the keys kept by the users who are in lower rank. The third one, final part, is to propose a secret sharing application to the varied oblivious transfer. We extend the 1-on-1 oblivious transfer to be 1-on-n where n is larger than or equal to 1. Our proposed scheme is subject to the scenario of multi-receiver. Following up the requests, we design the protocols which not only achieve the basic requirements of oblivious transfer but also make the intended recipients can only retrieve the individual information with them. It is next applied to two real cases to fit in with security concerns at the communications of CDMA (Code Division Multiple Access) and electronic commerce transaction systems.