论文部分内容阅读
对Chen所提的一种基于身份的多重认证密钥交换协议和一种无证书双方认证密钥协商协议进行了安全性分析,证明其提出的基于身份的多重认证密钥交换协议除了存在基于身份公钥密码体制固有的密钥托管问题之外,还不能满足前向安全性;不使用对的无证书双方认证密钥协商协议也无法抵抗无证书公钥密码体制安全模型中A_(II)类型敌手的攻击.由此,基于椭圆曲线密码体制分别提出新的无证书多重和单重认证密钥交换协议,证明新方案满足已知密钥安全、完美前向安全、抗临时密钥泄漏、抗假冒攻击及抗中间人攻击等安全特性.效率分析表明,新方案在确保安全性的同时具有较高的运算效率.
This paper analyzes the security of an identity-based multiple authentication key exchange protocol and a certificateless mutual authentication key agreement protocol proposed by Chen, and proves that the proposed identity-based multiple authentication key exchange protocol has the following advantages: Public Key Cryptosystem inherent key escrow problem, but also can not meet the forward security; not using the certificateless both sides of the authentication key agreement protocol can not resist certificateless public key cryptosystem security model A_ (II) type Which is based on the elliptic curve cryptosystem.A new certificateless multiple and single authentication key exchange protocol is proposed based on the elliptic curve cryptosystem, which proves that the new scheme can meet the requirements of known key security, perfect forward security, anti-temporary key leakage, anti- Counterfeit attacks and anti-man-in-the-middle attacks, etc. Efficiency analysis shows that the new scheme has higher computational efficiency while ensuring safety.