计算机工程与应用
計算機工程與應用
계산궤공정여응용
COMPUTER ENGINEERING AND APPLICATIONS
2010年
8期
1-4,28
,共5页
认证密钥协商%无证书加密%完美前向安全%私钥生成中心(PKG)前向安全%密钥托管
認證密鑰協商%無證書加密%完美前嚮安全%私鑰生成中心(PKG)前嚮安全%密鑰託管
인증밀약협상%무증서가밀%완미전향안전%사약생성중심(PKG)전향안전%밀약탁관
authenticated key agreement%certificateless-based encryption%perfect forward secrecy%Private Key Generator(PKG)forward secrecy%key escrow
基于无证书的认证密钥协商方案相比基于PKI的方案具有身份管理的简单性,同时相比基于身份的方案具有无密钥托管性.基于可证安全的无证书加密方案提出了一个两方认证密钥协商方案.通过与其他方案在安全性和有效性方面的比较,该方案满足更多的安全属性要求,如完美前向安全性,PKG前向安全性,已知会话相关临时秘密信息安全性和无密钥托管等安全特性,同时具有良好的计算有效性.
基于無證書的認證密鑰協商方案相比基于PKI的方案具有身份管理的簡單性,同時相比基于身份的方案具有無密鑰託管性.基于可證安全的無證書加密方案提齣瞭一箇兩方認證密鑰協商方案.通過與其他方案在安全性和有效性方麵的比較,該方案滿足更多的安全屬性要求,如完美前嚮安全性,PKG前嚮安全性,已知會話相關臨時祕密信息安全性和無密鑰託管等安全特性,同時具有良好的計算有效性.
기우무증서적인증밀약협상방안상비기우PKI적방안구유신빈관리적간단성,동시상비기우신빈적방안구유무밀약탁관성.기우가증안전적무증서가밀방안제출료일개량방인증밀약협상방안.통과여기타방안재안전성화유효성방면적비교,해방안만족경다적안전속성요구,여완미전향안전성,PKG전향안전성,이지회화상관림시비밀신식안전성화무밀약탁관등안전특성,동시구유량호적계산유효성.
The certificateless-based authenticated key agreement protocols have the advantages of simplicity of managing identities compared to the PKI-based schemes,as well as avoiding the key escrow issues inherited in the identity-based schemes.This paper proposes a two-party certificateless-based authenticated key agreement scheme based on a provably secure certificateless-based public key encryption schemes.The comparisons with other comparable schemes in security and efficiency show that,the new scheme achieves inore of the desired security attributes,such as perfect forward secrecy,PKG forward secrecy,known session-specific temporary information secrecy and key escrowless.Meanwhile it keeps the nice computational efficiency.
