基于带智能卡的移动终端实现的隐私保护的属性票据方案  被引量：3

作　　者：史瑞 封化民[1,2] 谢惠琴 史国振[2] 刘飚 杨旸[3] 王勇[4] SHI Rui;FENG Huamin;XIE Huiqin;SHI Guozhen;LIU Biao;YANG Yang(School of Cyberspace Security,Beijing University of Posts and Telecommunications,Beijing 100876,China;Beijing Electronic Science and Technology Institute,Beijing 100070,China;College of Mathematics and Computer Science,Fuzhou University,Fuzhou 350108,China)

机构地区：[1]北京邮电大学网络空间安全学院,北京100876 [2]北京电子科技学院,北京100070 [3]福州大学数学与计算机科学学院,福建福州350108 [4]不详

出　　处：《通信学报》2022年第10期26-41,共16页Journal on Communications

基　　金：国家自然科学基金资助项目(No.62101085);重庆市教委科学技术研究基金资助项目(No.KJZD-K202000605);重庆市研究生科研创新基金资助项目(No.CYS22473)。

摘　　要：为了解决现有电子票据系统难以在资源受限设备中部署,以及无法防止票据在未授权设备之间共享的问题,提出了基于带智能卡的移动终端实现的隐私保护的属性票据方案。其中,智能卡为安全可信但资源受限的核心设备,负责存储密钥信息并处理轻量级的运算;智能终端为功能强大的辅助设备,负责处理与密钥无关但耗时的运算。首先,结合伪随机函数、匿名的临时身份方案、带随机化标签的可聚合签名和Pointcheval-Sanders签名,构造了一个可在带智能卡的移动终端部署的支持属性策略的电子票据方案;其次,给出了电子票据的安全模型并证明了所提方案满足不可链接性和不可伪造性;最后,在个人计算机、国产智能卡(爱信诺ACH512)和智能手机(华为荣耀9i)上实现了所提方案,对比和实验结果表明了所提方案的高效性。To solve the problem that the existing electronic ticket systems are challenging to deploy in resource-constrained devices and cannot prevent the sharing of tickets among unauthorized devices,a privacy-preserving attribute ticket scheme based on mobile terminal with a smart card was proposed.The smart card was a secure and constrained-yet-trusted core device that holds secret information and performs lightweight operations.The mobile terminal was a powerful helper device that handles key-independent and time-consuming operations.Firstly,the efficient attribute-based ticket scheme deployed on the mobile terminal with a smart card was constructed by combining a pseudorandom function,anonymous ephemeral identities scheme,aggregatable signatures with randomizable tags,and Pointcheval-Sanders signatures.Secondly,the security model of the electronic tickets system was presented,and the proposed scheme was proved to be unlinkable and unforgeable.Finally,the proposed scheme was implemented on a personal computer,a smart card(Aisinochip ACH512),and a smart phone(Huawei Honor 9i),and the comparison and experimental results show that it is efficient.

关 键 词：电子票据 隐私保护 智能卡 智能手机 数字签名 

分 类 号：TP309.2[自动化与计算机技术—计算机系统结构]