支持解密外包的OSM9标识密钥封装机制  

作　　者：刘宽 LIU Kuan(College of Computer and Cyber Security,Fujian Normal University,Fuzhou 350ll7,China)

机构地区：[1]福建师范大学计算机与网络空间安全学院,福建福州350117

出　　处：《工业技术创新》2023年第1期106-113,共8页Industrial Technology Innovation

摘　　要：SM9系列标识密码算法自被纳入国家密码行业标准、ISO/IEC国际标准以来,一直受到广泛关注,然而在SM9标识密钥封装机制下,每一次解密操作都需要作一次双线性配对运算,解密耗时随着密文数量的增加呈线性增长趋势,无法更好适应需要对海量数据进行频繁解密操作且算力资源受限的环境。鉴于此,在SM9基础上进行功能性拓展,提出支持解密外包的OSM9标识密钥封装机制。OSM9将标准SM9标识密钥封装机制解密过程中的所有配对运算全部外包至具备强大算力的云服务中心,有效消除了耗时较大的双线性配对运算对解密效率的影响,使得计算资源受限的终端用户只需进行一次简单的指数运算就能完成最终解密。算法具备抗密钥泄漏功能,在与云服务中心交互的情况下,恶意第三方即使拿到数据使用者的解密密钥,对云服务中心返回的外包结果执行解密操作,依旧只能取得被数据使用者的私钥所盲化的结果。理论分析和仿真实验印证了OSM9的可行性与高效性,相比于SM9,终端解密时间减少了约61.01%,有效拓展了SM9系列标识密码算法的应用范畴。The SM9 series identification cipher algorithm have been widely concerned since they were incorporated into the national cipher industry standards and ISO/IEC international standards.However,under the SM9 identification key encapsulation mechanism,each decryption operation needs a bilinear pairing operation,and the decryption time increases linearly with the increase of the number of ciphertexts,so it cannot better adapt to the environment where massive data needs frequent decryption operations and the computing resources are limited.Thus,based on the functional expansion of SM9,an OSM9 identification key encapsulation mechanism supporting outsourced decryption was proposed.OSM9 outsources all pairing operations in the decryption process of the standard SM9 identification key encapsulation mechanism to a cloud service center with powerful computing ability,effectively eliminating the influence of bilinear pairing operations which take a long time on the decryption efficiency,and making the terminal users with limited computing resources only need to perform one simple exponential operation to complete the final decryption.The algorithm has the function of anti-key leakage.When interacting with the cloud service center,even if the malicious third party gets the decryption key of the data user and decrypts the outsourcing result returned by the cloud service center,it can only get the result blinded by the private key of the data user.Theoretical analysis and simulation experiments prove the feasibility and efficiency of OSM9.Compared with SM9,the terminal decryption time is reduced by about61.01%,which effectively expands the application scope of SM9 series identification cipher algorithm.

关 键 词：OSM9 标识密码算法 解密外包 标识密钥封装 双线性配对 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]