基于身份标识加密的身份认证方案  被引量:10

Identity authentication scheme based on identity-based encryption

在线阅读下载全文

作  者:黄仁季 吴晓平[1] 李洪成[1] HUANG Ren-ji WU Xiao-ping LI Hong-cheng(Department of Information Security, Naval University of Engineering, Wuhan 430033, Chin)

机构地区:[1]海军工程大学信息安全系,湖北武汉430033

出  处:《网络与信息安全学报》2016年第6期32-37,共6页Chinese Journal of Network and Information Security

基  金:国家自然科学基金资助项目(No.61100042);湖北省自然科学基金资助项目(No.2015CFC867);国家社会科学基金军事学资助项目(No.15GJ003-201)~~

摘  要:在大规模通信节点的网络中,网络节点数量大、设备种类多,传统的PKI密码体系存在证书管理困难与资源浪费的问题。设计了基于身份标识加密的节点双向认证方案。利用基于身份的密码加密对通信节点进行双向的身份认证,解决了PKI体系中的数字证书管理问题;采用密钥分割的方法解决了基于身份密码体制所存在的密钥托管问题。同时,在认证协议中引入随机因子、时间戳、散列运算等防范各种网络攻击。最后,对加密算法的安全性和效率以及认证协议的安全性进行了分析,证明了认证方案是安全可靠的。In large-scale communication nodes network, there are a large number of network nodes and so many types of equipment. So there are problems of certificate management difficulties and resource waste in the tradi- tional PKI cryptosystem. A mutual node authentication scheme based on identity-based encryption, which solved the problem of the digital certificate management in the PKI system by the identity-based encryption and the key escrow problem in identity based cryptograph by splitting the key as well, was designed. At the same time, the introduction of random factor, timestamp and hash algorithm in the authentication protocol prevented various network attacks. Finally, the security and efficiency of the encryption algorithm and the security of the authentication protocol were analyzed, which proved the security and reliability of the authentication scheme.

关 键 词:节点身份认证 基于身份的密码体制 密钥托管 加密 

分 类 号:TP309.7[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象