支持多密文批量审计的解密外包SM9-HIBE密钥封装机制  

作　　者：刘宽 宁建廷 伍玮[3,4] 许胜民 林超[1,2] LIU Kuan;NING Jianting;WU Wei;XU Shengmin;LIN Chao(College of Computer and Cyber Security,Fujian Normal University,Fuzhou 350117,China;Fujian Provincial Key Laboratory of Network Security and Cryptology,Fuzhou 350117,China;Key Laboratory of Analytical Mathematics and Applications,Fujian Normal University,Fuzhou 350117,China;School of Mathematics and Statistics,Fujian Normal University,Fuzhou 350117,China)

机构地区：[1]福建师范大学计算机与网络空间安全学院,福建福州350117 [2]福建省网络安全与密码技术重点实验室,福建福州350117 [3]福建师范大学分析数学及应用教育部重点实验室,福建福州350117 [4]福建师范大学数学与统计学院,福建福州350117

出　　处：《通信学报》2023年第12期158-170,共13页Journal on Communications

基　　金：国家自然科学基金资助项目(No.61972094,No.62372108,No.62102090,No.62102089,No.U21A20466)。

摘　　要：SM9-HIBE密钥封装机制的解密操作需要2次双线性配对运算,在设备算力受限且需对大规模信息资源进行高频解密时,配对运算的高额计算开销会束缚系统的有效部署。为此,基于SM9-HIBE提出了一种支持解密外包和多密文批量审计的新型密钥封装机制OASM9-HIBE,并利用Fujisaki-Okamoto转换技术在随机谕言模型下证明了OASM9-HIBE具备RCCA安全性。OASM9-HIBE将计算繁重的双线性配对运算全部安全外包至算力强大的云端,第k层用户只需执行一次简单的指数运算即可完成最终解密,有效提升了原SM9-HIBE的解密效率,OASM9-HIBE同时运用密钥盲化技术实现了多份转换密文的高效批量审计功能,从而拓展了SM9系列算法的应用领域。The decryption operation of SM9-HIBE key encapsulation mechanism required two bilinear pairing operations,for the equipment requiring frequent decryption of massive data and with limited computing resources,such resourc-ing-consuming pairing operation will become an important bottleneck restricting the system deployment.To address the above issue,a decryption outsourcing key encapsulation mechanism OASM9-HIBE based on SM9-HIBE was proposed,which supported multi-ciphertext batch auditing.The Fujisaki-Okamoto transformation technology was utilized to prove the RCCA security of OASM9-HIBE under the random oracle model.All resourcing-consuming bilinear pairing opera-tions were safely offloaded to the cloud server in OASM9-HIBE,the k-th hierarchical user only need to perform one sim-ple exponentiation operation to complete the final decryption.The decryption efficiency of the original SM9-HIBE was effectively improved under the premise of not changing the downward proxy generation function of the user’s private key between hierarchical.OASM9-HIBE additively achieved the property of batch auditing of multi-transformed ciphertexts by employing the key blinding technology.Theoretical analysis and evaluation of experimental data highlight the feasi-bility and efficiency of OASM9-HIBE,OASM9-HIBE extends the application field of SM9 series algorithms.

关 键 词：分层密钥封装机制 解密外包 批量审计 密钥封装 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]