检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:阮鸥[1] 王子豪 张明武[1] Ruan Ou;Wang Zihao;Zhang Mingwu(School of Computer Science & Technology,Hubei University of Technology,Wuhan 430068,Chin)
出 处:《中南民族大学学报(自然科学版)》2018年第2期109-113,127,共6页Journal of South-Central University for Nationalities:Natural Science Edition
基 金:国家自然科学基金项目(61370224;61672010);湖北省自然科学基金面上项目(2017CFB596);湖北工业大学绿色工业科技引领计划项目(ZZTS2017006)
摘 要:针对云计算等网络新应用中用户隐私保护问题,提出了基于椭圆曲线CDH假设的匿名口令认证密钥交换APAKE协议,通过它用户既能与服务器建立共享会话密钥,又不会暴露其真实身份信息.通过系统模型、安全模型定义及严格的形式化证明,验证了此APAKE协议满足正确性、PAKE安全性及用户匿名性.通过与现有协议对比分析表明:所提APAKE协议既能抵抗身份冒充攻击及离线口令猜测攻击,也提供双向认证;协议效率得到很大提高,客户端及服务器端计算复杂度均有大幅降低.According to the problem of protecting users ' privacy in the new applications of network such as cloud computing,an anonymous password-based authenticated key exchange( APAKE) protocol based on CDH assumption of elliptic curve cryptography is proposed,in which a client can establish a shared session key with the server authentically and anonymously. The system model,security model and formal proofs illustrate that the proposed APAKE protocol satisfies three properties: correctness,PAKE security and user 's privacy. Based on the analyzes with the existing APAKE protocols,it is shown that the protocol is secure against impersonating attack and off-line dictionary attack,and provides mutual authentication; and the new construction is more efficient than others' APAKE protocols.
关 键 词:密钥交换协议 匿名认证 认证密钥交换协议 口令认证 可证明安全
分 类 号:TP309.2[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:52.15.197.192