摘要
为解决IDAK协议不具备前向安全性以及改进的IDAK协议不满足密钥协商阶段全部安全属性的问题,使用双线性对技术,提出一种具备PKG前向安全性的无证书无托管密钥协商方案,并首次将密钥协商协议应用于特定民航系统中进行模拟仿真。实验表明,该方案具备合理的对数运算、指数运算、乘幂运算次数,以及更高的安全强度,相比其它方案,更适用于TWLU数据传输过程。
In order to solve the problem that IDAK protocol does not have forward security and the improved IDAK protocol does not satisfy all security attributes in key agreement phase, a bilinear pairing technique is used to propose a certificateless and no-hosting key agreement scheme with PKG forward security. This key agreement protocol is applied to specific civil aviation system simulation for the first time. Experiments prove that the scheme has reasonable prequency of logarithm operation, exponential operation and exponentiation operation as well as stronger security, which is more suitable for TWLU data transmission compared with other schemes.
引文
[1] DIFFIE W, HELLMAN M E. New directions in cryptography[J]. IEEE Transactions on Information Theory, 1976, 22(6):644-654.
[2] BRUCE S,祝世雄.应用密码学:协议、算法与C源程序[M].北京:机械工业出版社, 2014.
[3] AL-RIYAMI S S, PATERSON K G. Certificateless public key cryptography[C]//International Conference on the Theory and Application of Cryptology and Information Security. Springer, Berlin, Heidelberg,2003:452-473.
[4] BONEH D, FRANKLIN M K. Identity based encryption from the Weil pairing[J]. Grypto, 2001, 32(3):213-229.
[5] GENTRY C. Practical identity-based encryption without random oracles[J]. Eurocrypt, 2006, 4004:445-464.
[6]王圣宝.基于双线性配对的加密方案及密钥协商协议[D].上海:上海交通大学, 2008.
[7]汪小芬,陈原,肖国镇.基于身份的认证密钥协商协议的安全分析与改进[J].通信学报, 2008, 29(12):16-21.
[8]陈明.标准模型下增强的身份基认证密钥协商[J].计算机应用研究, 2014, 31(6):1869-1873.
[9]陈明.标准模型下可托管的基于身份认证密钥协商[J].电子学报,2015, 43(10):1954-1962.
[10]王怡,杜伟章.无双线性对的无证书签名方案的分析及改进[J].计算机应用, 2013, 33(8):2250-2252.
[11]徐嘉鸿.基于身份认证的密钥协商协议研究[D].阜新:辽宁工程技术大学, 2015.
[12]项顺伯.基于身份的改进认证密钥协商协议[J].计算机工程, 2011,37(17):128-129.