基于无证书的可认证组密钥协商协议-《计算机技术与发展》

文章信息/Info

Author(s):: LIU Xiao-qiong; PAN Jin; LIU Qiong; Xi＇ an Communications Institute

Keywords:: group key agreement ; multilinear forms; certificateless-based password system; formal analysis

摘要:: 文中基于多线性表的性质，综合椭圆曲线上离散对数问题，提出一个新的基于无证书的多方密钥协商方案。新协议避免了传统的基于证书的方案中复杂的证书管理问题，解决了基于身份的组密钥协商方案中固有的密钥托管问题。实现了对通信各方的身份认证，有效防止了主动攻击。最后，通过计算验证了会话密钥的一致性，采用应用Pi演算对协议进行形式化分析验证了协议的安全性。和其它可认证组密钥协商协议相比，新方案用较小的计算开销换取了协议的更强安全性，协议的实用性大大增强

Abstract:: An certificateless-based authenticated group key agreement protocol is proposed based on the property multilinear forms and elliptic curve discrete logarithm problem. The new scheme not only avoids the complex management of certificates in PIG scheme,but also avoids the key escrow issues inherited in the identity-based schemes effectively and prevents active attack by identity authentication. And then, the correctness of the session key is confirmed by computing, the formal analysis based on applied Pi calculus has shown fulfdled au- thentication and security. Compared with other authenticated group key agreement protocols, the newly proposed group key agreement protocol has better security with the cost of little computation and more stronger practicality