摘要
利用椭圆曲线上双线性对映射和离散对数问题,提出一种基于无证书的两方跨域认证密钥协商协议。该协议解决了传统的基于身份的跨域两方密钥协商协议中固有的密钥托管问题,实现了跨域通信双方的身份验证,防止了主动攻击。在保证协议正确性的基础上,采用应用Pi演算对协议进行形式化分析,并验证了协议的认证性和安全性。与其他跨域两方认证密钥协商协议性能相比,该协议的安全性和效率都更优。
This paper proposed a certificateless-based two-party authenticated key agreement protocol for a multiple PKG environment based on bilinear pairings in elliptic curves and elliptic curve discrete logarithm,which solved the key escrow issues inherited in the identity-based schemes effectively and preventing active attack by identity authentication.After confirming the correctness,the formal analysis based on applied Pi calculus shows fulfilled authentication and security.Compared with other two-party authenticated key agreement protocols for a multiple PKG environment,the newly proposed key agreement protocol has better security and efficiency.
出处
《计算机应用研究》
CSCD
北大核心
2012年第2期646-649,共4页
Application Research of Computers
