检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:张雪锋[1] 郭奥磊 程叶霞 ZHANG Xuefeng;GUO Aolei;CHENG Yexia(School of Cyberspace Security,Xi’an University of Posts and Telecommunications,Xi’an 710121,China;China Mobile Research Institute,Beijing 100053,China)
机构地区:[1]西安邮电大学网络空间安全学院,陕西西安710121 [2]中国移动通信有限公司研究院,北京100053
出 处:《西安邮电大学学报》2024年第4期75-83,共9页Journal of Xi’an University of Posts and Telecommunications
基 金:陕西省自然科学基础研究计划项目(2022JQ-600)。
摘 要:针对身份认证过程中数字签名泄露双方身份信息的问题,提出一种基于SM9的可指定验证双向身份认证方案。该方案基于应答式双向身份认证模型,在身份认证阶段将对方生成的随机群元素代入数字签名的生成过程,在密钥协商阶段为问候消息添加时间戳使会话密钥拥有时效性。理论分析结果表明,该方案在保护认证双方身份信息隐私的同时,能够有效防止攻击者对会话密钥进行重放攻击。与其他方案相比,该方案提供了更高安全性且具有较好的性能。In order to solve the problem of digital signatures leaking identity information from both parties during the identity authentication process,a bidirectional identity authentication scheme with designated verifier based on SM9 is proposed.This scheme is based on a responsive bidirectional identity authentication model,which incorporates random group elements generated by the other party into the process of generating digital signatures during the identity authentication stage.At the same time,adding a timestamp to the greeting message during the key agreement phase,to make the session key timeliness.Theoretical analysis results indicate that this scheme can effectively prevents attackers from performing replay attacks on session keys while protecting the privacy of identity information of both authentication parties.Compared with other schemes,this scheme has good efficiency while providing higher security.
关 键 词:SM9算法 数字签名 双向身份认证 指定验证者 密钥协商
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.137.198.25