论文部分内容阅读
McCullagh-Barreto key agreement protocol and its variant achieve perfect forward security and key generation center(KGC) forward security,but provide no resistance to key compromise impersonation attack(KCI attack).In this paper,we give a formal treatment of key compromise impersonation(KCI)attack and define the security notion against it.Then an variant of McCullagh-Barreto protocol is presented with only one more Hash operation.The improved protocol preserves perfect forward security and KGC forward security,and furthermore is proved to be secure against KCI attack under k-Gap-BCAA1 assumption.
McCullagh-Barreto key agreement protocol and its variant achieve perfect forward security and key generation center (KGC) forward security, but provide no resistance to key compromise impersonation attack (KCI attack). In this paper, we give a formal treatment of key compromise impersonation (KCI) attack and define the security notion against it. An anomaly of McCullagh-Barreto protocol is presented with only one more Hash operation. The improved protocol preserves perfect forward security and KGC forward security, and is is proved to be secure against KCI attack under k-Gap-BCAA1 assumption.