强安全的匿名隐式漫游认证与密钥协商方案

陈明

doi:10.7544/issn1000-1239.2017.20160485

强安全的匿名隐式漫游认证与密钥协商方案

陈明

(宜春学院数学与计算机科学学院江西宜春 336000) (可信计算与信息保障国家重点实验室(中国科学院软件研究所) 北京 100190) (chenming9824@aliyun.com)

基金项目: 国家自然科学基金项目(61662083)；江西省自然科学基金项目(2014ZBAB207022)；江西省教育厅科学技术研究项目(GJJ151040,GJJ151037)

详细信息

中图分类号: TP309
计量
- 文章访问数: 1237
- HTML全文浏览量: 1
- PDF下载量: 469
出版历程
- 发布日期: 2017-11-30

Strongly Secure Anonymous Implicit Authentication and Key Agreement for Roaming Service

Chen Ming

(College of Mathematics and Computer Science, Yichun University, Yichun, Jiangxi 336000) (State Key Laboratory of Trusted Computing and Information Assurance (Institute of Software, Chinese Academy of Sciences), Beijing 100190)

摘要

摘要: 现有两方漫游认证与密钥协商方案没有考虑抵抗临时秘密泄露的安全性，仅在CK模型下可证明安全.基于椭圆曲线密码体制和基于身份密码系统，采用Schnorr签名算法设计了类似HMQV方案的“挑战-应答”签名，进而构造了一种基于隐式认证技术的、具有强安全性和匿名性的两方漫游认证密钥协商方案.随后，扩展了ID-BJM模型，使之能模拟两方漫游认证与密钥协商方案.在扩展的安全模型下，新方案的安全性被规约为多项式时间敌手求解椭圆曲线上的计算Diffie-Hellman问题，实现了eCK安全.对比分析表明：新方案具有更强的安全性，能抵抗临时秘密泄露攻击，需要实现的密码算法更少，计算、通信和存储开销都相对较低.新方案可应用于移动通信网络、物联网或泛在网络中，为资源约束型移动终端提供安全的漫游接入服务.
- 认证密钥协商 /
- 移动漫游服务 /
- 基于身份密码系统 /
- 隐式认证 /
- 计算Diffie-Hellman问题 /
- eCK模型
Abstract: The existing two-party authentication and key agreement protocols for roaming service are provably secure in the CK model, and do not resist the attack of ephemeral secrets reveal. Based on elliptic curve cryptography and identity-based cryptosystem, we propose an anonymous two-party authentication and key agreement scheme for roaming service. The new scheme, based on the Schnorr signature, achieves mutual implicit authentication by a well designed “challenge-response” signature which is similar to the one in the HMQV protocol. We extend the ID-BJM model, a widely used security model for analyzing identity-based authenticated key agreement protocols, to simulate two-party authentication and key agreement schemes for roaming service. Furthermore, we demonstrate that the new scheme is eCK secure under the extended ID-BJM model, and that the security of the new scheme can be reduced to solve (by a polynomial-time adversary) computational Diffie- Hellman problems on an elliptic curve over finite fields. Comparative analysis shows that the new scheme has stronger security, achieves resistant to ephemeral secrets reveal, needs fewer cryptography libraries, and has lower computing, communication and storage overheads. The new scheme can be used to provide secure roaming authentication for resource constrained mobile terminals in global mobility networks, Internet of things or ubiquitous networks.
- authenticated key agreement /
- mobile roaming service /
- identity-based cryptosystem /
- implicit authentication /
- computational Diffie-Hellman problem /
- eCK model

HTML全文

参考文献(0)

施引文献(7)

期刊类型引用(3)

1.	商涛，程瑶，陈禄明，邓立宗，蒋太交. 呼吸病学标准医学术语在电子病历中的使用情况调研. 中国科技术语. 2021(04): 53-59 . 百度学术
2.	郑光敏，易天源，唐东昕，贺松. 基于BERT-BiLSTM-CRF模型的中国民族药知识抽取. 武汉大学学报(理学版). 2021(05): 393-402 . 百度学术
3.	戴志宏，郝晓玲. 上下位关系抽取方法及其在金融市场的应用. 数据分析与知识发现. 2021(10): 60-70 . 百度学术