本文已被:浏览 762次 下载 1381次
Received:June 07, 2020 Revised:July 15, 2020
Received:June 07, 2020 Revised:July 15, 2020
中文摘要: 认证密钥协议对于在公共网络上安全通信至关重要, 它使通信方能够在恶意攻击者当前安全地设置共享会话密钥. 基于证书的密码学(CBC)很好地解决了传统公钥密码体制中的证书撤销问题、基于身份的密码体制中的密钥托管问题和无证书密码体制中安全信道建立困难问题. 现有的基于证书认证密钥协商方案大多都采用了昂贵的双线性配对, 不适合计算资源有限的移动设备. 本文设计了一种轻量级的基于证书的AKA协议, 该协议用假名技术实现用户身份匿名. 该协议提供了前向保密, 抵抗中间人攻击, 重放攻击等安全性分析. 与以往基于证书的AKA协议相比, 该协议在计算效率上具有明显的优势.
Abstract:Authentication key agreement is vital for secure communication on the public network, it can make communication in a malicious attacker current safely set shared session key. Certificate-Based Cryptography (CBC) to solve the certificate revocation problem in traditional public key cryptosystems, the problem of key escrow in identity-based cryptosystem and no certificate cryptosystem in the security channel problems is established. The existing certificate-based authentication key agreement scheme is mostly adopted the expensive bilinear pairing, not suitable for calculation with limited resources of mobile devices. In this study, we design a lightweight AKA protocol based on the certificate, the protocol uses pseudonym technology to realize user anonymity, and provides forward confidentiality, man-in-the-middle attack resistance, replay attack and other security analysis. Compared with the previous certificate -based AKA protocol, this protocol has obvious advantages in computing efficiency.
keywords: certificate based encryption authentication key agreement mutual authentication forward secrecy anonymity
文章编号: 中图分类号: 文献标志码:
基金项目:
引用文本:
光笑黎,张露露,刘继增.一种轻量级基于证书的认证密钥协商方案.计算机系统应用,2021,30(1):264-269
GUANG Xiao-Li,ZHANG Lu-Lu,LIU Ji-Zeng.Lightweight Certificate-Based Authentication Key Agreement Scheme.COMPUTER SYSTEMS APPLICATIONS,2021,30(1):264-269
光笑黎,张露露,刘继增.一种轻量级基于证书的认证密钥协商方案.计算机系统应用,2021,30(1):264-269
GUANG Xiao-Li,ZHANG Lu-Lu,LIU Ji-Zeng.Lightweight Certificate-Based Authentication Key Agreement Scheme.COMPUTER SYSTEMS APPLICATIONS,2021,30(1):264-269
