摘要
密钥协商协议允许两个或多个用户在公开网络中建立共享密钥,非交互式密钥协商是用户之间不进行信息传递和交换,仅各自根据已经拥有的公开和私有数据信息,建立共享会话密钥.因此,非交互式密钥协商在很大程度上减小了用户之间的通信开销,同时降低了用户秘密信息和共享密钥的泄露概率.密钥协商根据所基于的密码系统不同可以分为三类,即在传统公钥基础设施下的密钥协商,基于身份的密钥协商和无证书密钥协商.无证书型方案的优点继承了其他两类方案的优点,又避免了它们的缺点,即不再需要CA的参与,从而能够大大减少协议执行的计算量.本文基于无证书公钥密码系统中密钥生成的思想,提出了一个新的非交互式密钥协商协议.新提出的协议能够在保证相对小的计算开销的前提下,使得通信双方以非交互的方式,利用各自拥有的信息,生成一个共同的会话密钥.方案的安全性是基于双线性Diffie-Hellman问题的困难性假设.我们的方案具有计算量小的优点,并且在双线性Diffie-Hellman问题下是可证明安全的.
A key agreement protocol enables two or more users to establish a shared key in the public network. Non-interactive key agreement enables two users to establish a shared key using the known information without more information interactive, so it greatly reduces the possibility of leaking secure information of users and the shared key. Key agreement can roughly be divided into three categories, namely the schemes in a traditional public key infrastructure, the schemes based ID-based cryptography and the certificateless schemes. The parties in the certificateless-based key agreement do not need a certificate. The certificateless schemes remain the advantage of them while it avoids their shortcomings. Its advantage is without requiring the participation of a CA, which greatly reduces the amount of computation. In this paper, we propose a non-interactive key agreement protocol inspired by certificateless scenario. The new protocol can ensure the two users to generate a shared session key by their information without more interactive, under a small computation cost. The security of this scheme is based on the difficulty assumption of the bilinear Diffie-Hellman problem. The new scheme has small computation costs, and the security proofs are also given under the difficulty assumption of the bilinear Diffie-Hellman problem.
出处
《密码学报》
2014年第4期334-340,共7页
Journal of Cryptologic Research
基金
国家自然基金项目(61100235
61100232)
关键词
密钥协商
非交互式
无证书
双线性DH问题
key agreement
non-interactive
certificateless
bilinear DH problem
