基于短群签名的密钥交换协议设计  被引量:2

Design of Key Exchange Protocol Based on Short Group Signature

在线阅读下载全文

作  者:孙钰[1] 韩庆同[1] 刘建伟[1] 

机构地区:[1]北京航空航天大学电子信息工程学院,北京100191

出  处:《计算机研究与发展》2012年第12期2619-2622,共4页Journal of Computer Research and Development

基  金:中央高校基本科研业务费专项资金项目(YWF1002009);中国博士后科学基金项目(20090460192)

摘  要:本协议采用线性加密技术,在短群签名体制下实现了密钥交换,为短群签名系统加入了密钥交换阶段.典型的短群签名系统包含以下6个阶段:初始化、入网、签名、验签、身份验证和撤销,可为群成员提供条件隐私性.本协议加入了密钥交换阶段,使短群签名系统具有保密性.该协议既可实现群成员与TA(trust authority)间的密钥交换,也可在TA的协助下,实现群成员间的密钥交换,为TA与群成员、群成员间的信息传输提供了保密性.本协议无需引入X.509证书,仅利用短群签名系统原有的参数即可完成密钥交换,既保持了短群签名的条件隐私性,也降低了系统管理的难度.本密钥交换协议仅需要两次通信,通信开销小,能降低网络延时和拥塞.安全性分析证明了该协议可抵抗篡改攻击、伪装攻击、重放攻击和中间人攻击.该协议完善了群签名体制,可为车载网络、可信计算和云计算等网络提供保密性.A new key exchange protocol using linear encryption based on short group signature is proposed in this paper. Typically, a short group signature system includes six steps: setup, ioin, sign, verify, open and revocation. It can provide conditional privacy to group members. The key exchange phase is added into short group signature system so that short group signature system may offer confidentiality after the new key exchange phase. The proposed protocol could implement key exchange between TA(trust authority) and a group member. With the help of TA, the seed of session key can be exchanged between two group members according to this protocol. The following communication can be encrypted by symmetric encipherment algorithm using the exchanged key after key exchange phase. No more parameters is introduced into short group signature system by proposed protocol, which reduces the difficulty in system management. X. 509 certification or PKI is unnecessary in proposed protocol, which keeps the conditional privacy of short group signature. Key is exchanged in only two communications, which reduces network delay and congestion. Security analysis proves that the proposed protocol resists tampering attack, impersonal attack, replay attack and man-in-the-middle attack. It provides confidential to short group signature system, which makes short group signature system more suitable for VANET, trust computing and cloud computing.

关 键 词:短群签名 线性加密 密钥交换 保密性 中间人攻击 

分 类 号:TP393.02[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象