全安全的属性基认证密钥交换协议

doi:10.3724/SP.J.1087.2012.00038

计算机应用 ›› 2012, Vol. 32 ›› Issue (01): 38-41.DOI: 10.3724/SP.J.1087.2012.00038

• 第四届中国计算机网络与信息安全学术会议论文(CCNIS’2011) • 上一篇下一篇

全安全的属性基认证密钥交换协议

魏江宏,刘文芬,胡学先

信息工程大学信息工程学院，郑州 450002

收稿日期:2011-08-09 修回日期:2011-09-23 发布日期:2012-02-06 出版日期:2012-01-01
通讯作者: 魏江宏
作者简介:魏江宏(1987-)，男，甘肃定西人，硕士研究生，主要研究方向：密码协议的设计与分析；刘文芬(1965-)，女，湖北安陆人，教授，博士生导师，主要研究方向：概率统计在通信和密码学中应用；胡学先(1982-)，男，湖北红安人，讲师，博士研究生，主要研究方向：密码协议的设计与分析。
基金资助:
国家973计划项目(2012CB315905)

Fully secure attribute-based authenticated key exchange protocol

WEI Jiang-hong,LIU Wei-fen,HU Xue-xian

Institute of Information Engineering, Information Engineering University, Zhengzhou Henan 450002, China

Received:2011-08-09 Revised:2011-09-23 Online:2012-02-06 Published:2012-01-01
Contact: WEI Jiang-hong

摘要/Abstract

摘要： 因在细粒度访问控制、定向广播等方面的广泛应用，基于属性的密码机制逐渐受到关注。以一个全安全的属性基加密(ABE)机制为基本构件，结合NAXOS技巧，提出了一个全安全的属性基认证密钥交换协议，并利用可证明安全理论在基于属性的eCK模型中进行了严格的形式化证明。相比已有的同类协议，提出的协议具有更高的安全性，并在提供丰富的属性认证策略的同时，减小了通信开销。

关键词: 属性基加密, 访问结构, 密钥交换, ABeCK模型

Abstract: Attribute-Based Encryption (ABE) scheme has been drawing attention for having a broad application in the area of fine-grained access control, directed broadcast, and so on. Combined with NAXOS technique, this paper proposed a fully secure Attribute-Based Authenticated Key Exchange (ABAKE) protocol based on an ABE scheme, and gave a detailed security proof in the Attribute-Based eCK (ABeCK) model by provable security theory. Compared with other similar protocols, the proposed protocol obtains stronger security and flexible attribute authentication policy, while decreasing communications cost.

Key words: Attribute-Based Encryption （ABE）, access structure, key exchange, Attribute-Based eCK (ABeCK) model

中图分类号:

TP309.2

魏江宏刘文芬胡学先. 全安全的属性基认证密钥交换协议[J]. 计算机应用, 2012, 32(01): 38-41.

WEI Jiang-hong LIU Wei-fen HU Xue-xian. Fully secure attribute-based authenticated key exchange protocol[J]. Journal of Computer Applications, 2012, 32(01): 38-41.

参考文献

[1]

ATENIESE G, KIRSCH J, BLANTON M. Secret handshakes with dynamic and fuzzy matching ［C］// NDSS 2007: Proceedings of the Network and Distributed System Security Symposium. San Diego: USENIX Association, 2007: 159-177.

[2]

WANG H, XU Q, BAN T. A provably secure two-party attribute-based key agreement protocol ［C］// Proceedings of Intelligent Information Hiding and Multimedia Signal Processing. Washington, DC: IEEE Computer Society, 2009: 1042-1045.

[3]

BIRKETT J, STEBILA D. Predicate-based key exchange ［C］// Proceedings of Australasian Conference on Information Security and Privacy. Berlin: Springer-Verlag, 2010: 282-299.

[4]

WATERS B. Ciphertext-policy attribute-based encryption: An ex-pressive, efficient, and provably secure realization ［C］// PKC'11: Proceedings of the 14th International Conference on Practice and Theory in Public Key Cryptography Conference on Public Key Cryptography. Berlin: Springer-Verlag, 2011: 53-70.

[5]

YONEYAMA K. Strongly secure two-pass attribute-based authenticated key exchange ［C］// Pairing'10: Proceedings of the 4th International Conference on Pairing-based Cryptography. Berlin: Springer-Verlag, 2010: 147-166.

[6]

LEWKO A, OKAMOTO T, SAHAI A, et al. Fully secure functional encryption: Attribute-based encryption and (hierarchical) inner product encryption ［C］// Advances in Cryptology-EUROCRYPT 2010, 29th Annual International Conference on the Theory and Applications of Cryptographic Techniques. Berlin: Springer-Verlag, 2010: 62-91.

[7]

LAMACCHIA B, LAUTER K, MITYAGIN A. Stronger security of authenticated key exchange ［C］// ProvSec'07: Proceedings of the 1st International Conference on Provable Security. Berlin: Springer-Verlag, 2007: 1-16.

[8]

BEIMEL A. Secure schemes for secret sharing and key distribution ［D］. Haifa: Israel Institute of Technology, 1996.

[9]

WATERS B. Dual system encryption: Realizing fully secure IBE and HIBE under simple assumptions ［C］// Advances in Cryptology-CRYPTO 2009, 29th Annual International Cryptology Conference. Berlin: Springer-Verlag, 2009: 619-636.

[10]

OKAMOTO T, POINTCHEVAL D. The gap-problems: A new class of problems for the security of cryptographic schemes ［C］// PKC 2001: Proceedings of the 4th International Workshop on Practice and Theory in Public Key Cryptography. Berlin: Springer-Verlag, 2001: 104-118.

[1]	陈家豪, 殷新春. 基于云雾计算的可追踪可撤销密文策略属性基加密方案[J]. 计算机应用, 2021, 41(6): 1611-1620.
[2]	庞晓琼, 杨婷, 陈文俊, 王云婷, 刘天野. 区块链环境下基于秘密共享的数字权限管理方案[J]. 《计算机应用》唯一官方网站, 2021, 41(11): 3257-3265.
[3]	郭丽峰, 王倩丽. 自适应安全的带关键字搜索的外包属性基加密方案[J]. 《计算机应用》唯一官方网站, 2021, 41(11): 3266-3273.
[4]	余卿斐, 涂广升, 李宁波, 周潭平. 多跳多策略属性基全同态加密方案[J]. 计算机应用, 2019, 39(8): 2326-2332.
[5]	李子臣, 谢婷, 蔡居良, 张筱薇. 基于环上误差学习问题的新型后量子认证密钥交换协议[J]. 计算机应用, 2018, 38(8): 2243-2248.
[6]	李聪, 杨晓元, 白平, 王绪安. 可追责和完全可验证外包解密CP-ABE方案[J]. 计算机应用, 2018, 38(8): 2249-2255.
[7]	江炳城, 何倩, 陈亦婷, 刘鹏. 面向云数据库的属性基加密和查询转换中间件[J]. 计算机应用, 2018, 38(8): 2280-2286.
[8]	李聪, 杨晓元, 王绪安. 基于扩展属性基功能加密的有效外包计算[J]. 计算机应用, 2018, 38(6): 1633-1639.
[9]	刘荣, 潘洪志, 刘波, 祖婷, 方群, 何昕, 王杨. 基于密文策略属性基加密算法的云存储数据更新方法[J]. 计算机应用, 2018, 38(2): 348-351.
[10]	李琦, 熊金波, 黄利智, 王煊, 毛启铭, 姚岚午. 智慧健康中基于属性的访问控制方案[J]. 计算机应用, 2018, 38(12): 3471-3475.
[11]	陈丹伟, 杨晟. 基于动态信用等级的密文访问控制方案[J]. 计算机应用, 2017, 37(6): 1587-1592.
[12]	王经纬, 殷新春. 支持带权属性撤销的密文策略属性基加密方案[J]. 计算机应用, 2017, 37(12): 3423-3429.
[13]	李聪, 杨晓元, 王绪安, 白平. 固定密文长度的可验证属性基外包解密方案[J]. 计算机应用, 2017, 37(11): 3299-3303.
[14]	陈建, 沈潇军, 姚一杨, 邢雅菲, 琚小明. 基于密文策略属性基加密系统访问机制的缓存替换策略[J]. 计算机应用, 2017, 37(10): 2964-2967.
[15]	蔡孟飞, 何倩, 程东生, 王士成. 面向移动云存储的属性基解密服务中间件[J]. 计算机应用, 2016, 36(7): 1828-1833.

全安全的属性基认证密钥交换协议

Fully secure attribute-based authenticated key exchange protocol

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics