一种基于国密算法的区块链无证书加密机制  被引量：5

作　　者：向宴颉 黄晓芳[1] 向科峰[2] 郑继楠 XIANG Yanjie;HUANG Xiaofang;XIANG Kefeng;ZHENG Ji’nan(School of Computer Science and Technology,Southwest University of Science and Technology,Mianyang,Sichuan 621010,China;School of Manufacturing Science and Engineering,Southwest University of Science and Technology,Mianyang,Sichuan 621010,China)

机构地区：[1]西南科技大学计算机科学与技术学院,四川绵阳621010 [2]西南科技大学制造科学与工程学院,四川绵阳621010

出　　处：《计算机科学》2024年第8期440-446,共7页Computer Science

基　　金：国家自然科学基金(62076209);国家自然科学基金青年科学基金(61702429);四川省科技厅重点研发项目(21ZDYF3119,2022YFG0321)。

摘　　要：区块链因具有分布式、不可篡改和不变性的特点而广受关注,但区块链中使用的国际密码算法存在一定的后门安全隐患。现基于国密算法SM2,结合无证书密码机制,提出了一种基于区块链的无证书公钥加密(Certificateless Public Key Encryption,CL-PKE)方案。该方案不依赖双线性配对,降低了计算成本,消除了证书管理和密钥托管问题,并且利用区块链不可篡改和可追溯的优点,实现了用户对公钥的更新与撤销,同时能够对抗无证书机制中的Type-1和Type-2型敌手。该方案基于计算性Diffie-Hellman问题(Computational Diffie-Hellman Problem,CDHP)的困难性,在随机预言模型中被证明在自适应选择密文攻击下具有不可区分性。最后进行性能分析与测试,结果表明,与现有CL-PKE方案相比,该方案的计算效率至少提升11%。The blockchain has attracted widespread attention because of its distributed,non-tamperable and inherent immutability features.However,the international cryptographic algorithm used in the blockchain has certain backdoor security risks.Based on the national secret algorithm SM2,this paper proposes a blockchain-based certificateless public key encryption(CL-PKE)scheme,which combines with the certificateless cryptographic mechanism.The scheme does not use bilinear pairing,reduces computa-tional cost,and eliminates certificate management and key escrow issues.At the same time,due to tamper proof and traceable of blockchain,the scheme realizes the user’s updating and revocation of the public key,so as to fight against Type-1 and Type-2 adversaries in the certificateless mechanism.Based on the difficulty of the computational Diffie-Hellman problem(CDHP),it is proved that the scheme is indistinguishable under the adaptive chosen ciphertext attack in the random prediction model.Finally,after analysis and testing,compared with the existing CL-PKE schemes,the computational efficiency of this scheme is increased by at least 11%.

关 键 词：无证书 SM2 区块链 随机预言模型 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]