计算机应用 ›› 2012, Vol. 32 ›› Issue (02): 465-471.

• 信息安全 • 上一篇    下一篇

一个基于身份的非交互可否认源认证协议

李志敏,徐馨,李存华   

  1. 淮海工学院 计算机工程学院,江苏 连云港 222005
  • 收稿日期:2011-07-13 修回日期:2011-09-12 发布日期:2012-02-23 出版日期:2012-02-01
  • 通讯作者: 李志敏
  • 作者简介:李志敏(1981-),女,辽宁沈阳人,讲师,博士,主要研究方向:密码学、信息安全、网络安全;
    徐馨(1976-),女,江苏连云港人,讲师,硕士,主要研究方向:信息安全、网络安全、算法分析;
    李存华(1963-),男,江苏徐州人,教授,博士,主要研究方向:数据库、数据挖掘、模式识别。
  • 基金资助:
    江苏省自然科学基金资助项目(BK2010599);淮海工学院引进人才科研启动基金资助项目(KQ10121);淮海工学院校内课题(KX10530)

ID-based non-interactive deniable authentication protocol

LI Zhi-min,XU Xin,LI Cun-hua   

  1. School of Computer Engineering, Huaihai Institute of Technology, Lianyungang Jiangsu 222005, Chian
  • Received:2011-07-13 Revised:2011-09-12 Online:2012-02-23 Published:2012-02-01
  • Contact: LI Zhi-min

摘要: 可否认源认证方案能够让接收方确认消息发送方的身份,但不能向第三方证明发送方的身份,在电子商务和电子政务中有广泛的应用。在假定计算Diffie-Hellman问题是困难的前提下,利用双线性对,构造了一个基于身份的非交互可否认源认证协议,并在随机预言模型下证明了方案的安全性。分析结果表明新提出的协议可以抵抗伪造攻击、假冒攻击、中间人攻击以及重放攻击等。该协议基于身份,不需要证书,可简化密钥管理;其通信和计算效率较高,实现简单,可用于计算能力受限的设备。

关键词: 认证协议, 可否认源认证, 非交互式协议, 可证安全, 基于身份

Abstract: Non-interactive deniable authentication protocol can enable the receiver to identify the source of a received message and prevent a third party from identifying the source of the message, which is very suitable to be used in E-commerce and E-government. Based on computational Diffie-Hellman assumption, using bilinear pairing, a new identity-based deniable authentication protocol was constructed. The security of the scheme was proved under the random oracle model. The analytical results show that the new proposed protocol can resist the forgery attack, spoofing attack, middle attack and replay attack. This protocol is identity-based, which means it needs no certificate and has a simple key management. On the other hand, it is efficient in communications and computation, and its implementation is simple, so that it could be implemented in mobile devices with low power and small processor.

Key words: authentication protocol, deniable authentication, non-interactive protocol, provably secure, identity-based

中图分类号: