面向可信移动平台具有用户可控关联性的匿名证明方案  被引量：4

作　　者：岳笑含[1] 周福才[2] 林慕清[1] 李福祥[1] 

机构地区：[1]东北大学信息科学与工程学院,沈阳110004 [2]东北大学软件学院,沈阳110004

出　　处：《计算机学报》2013年第7期1434-1447,共14页Chinese Journal of Computers

基　　金：国家科技重大专项基金(2013ZX03002006);国家"八六三"高技术研究发展计划项目基金(2009AA01Z122);辽宁省百千万人才工程项目(2011921071);沈阳市自然科学基金(F10-205-1-12)资助~~

摘　　要：针对可信移动平台(Trusted Mobile Platform,TMP)远程认证方式中直接匿名证明方案存在的性能瓶颈、R攻击以及跨信任域问题,提出了一种新型的具有用户可控关联性的匿名证明(Anonymous Attestation with User-controlled-linkability,TMP-UAA)方案.通过引入可信第三方CA构建了方案的模型,该模型可以有效解决传统直接匿名证明设计中存在的R攻击和跨信任域问题,且易于部署实现.根据提出的方案模型,首先利用Paillier加密系统及可验证加密技术设计了一个安全两方计算协议,该协议用于实现TPM-UAA方案中的Join协议;其次运用该协议并结合提出的l-MSDH假设和XDH假设给出了方案的具体设计;然后在随机预言模型下对方案的安全性进行了证明,证明表明该方案满足用户可控匿名性以及用户可控可追踪性;此外在性能方面与现有直接匿名证明方案相比,该方案具有更短的签名长度以及更高的计算效率;最后阐述了TPM-UAA方案在可信移动环境下的跨域证明,该证明避免了传统直接匿名证明存在的跨信任域及R攻击问题.In order to solve the problems of the performance bottleneck, Rudolph attack and cross trusted domain concerning direct anonymous authentication （DAA） in trusted mobile platform, we propose a novel anonymous attestation scheme with user-controlled-linkability （TPM-UAA）. In this paper, we construct the model of TPM-UAA scheme which can solve the problems of Rudolph attack and cross trusted domain effectively by adding the trusted third party CA. According to the proposed model, we first design a secure two-party computation protocol by employing the Paillier cryptosystem and the verifiable encryption technique, which can be used for the Join protocol of our TPM-UAA scheme~ secondly, based on the proposed /-MSDH assumption and the XDH assumption, we present our TPM-UAA scheme concretely~ thirdly, under the random oracle model we prove the security of our scheme which meets user controlled anonymity and user controlled traceability. Then compared with the existing direct anonymous authentication schemes at the aspects of the computational cost and the communication cost, our TPM-UAA scheme has better performance; finally, in the trusted mobile environment, we illustrate that our TPM-UAA scheme can achieve cross-trusted-domain attestation, and can avoid Rudolph attack and cross trusted domain problem which happened in the direct anonymous attestation scheme.

关 键 词：匿名证明 可信移动平台 移动可信模块 跨信任域 R攻击 用户可控关联性 移动互联网 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]