多属性机构环境下的属性基认证密钥交换协议

魏江宏; 胡学先; 刘文芬

doi:10.3724/SP.J.1146.2011.00701

留言板

尊敬的读者、作者、审稿人, 关于本刊的投稿、审稿、编辑和出版的任何问题, 您可以本页添加留言。我们将尽快给您答复。谢谢您的支持!

姓名

邮箱

手机号码

标题

留言内容

验证码

多属性机构环境下的属性基认证密钥交换协议

doi: 10.3724/SP.J.1146.2011.00701

魏江宏^{* 胡学先刘文芬,},
胡学先,
刘文芬

基金项目:

国家973计划项目(2012CB315905)资助课题

计量
- 文章访问数: 2327
- HTML全文浏览量: 70
- PDF下载量: 950
- 被引次数: 0
出版历程
- 收稿日期: 2011-07-08
- 修回日期: 2011-10-24
- 刊出日期: 2012-02-19

Attribute-based Authenticated Key Exchange Protocol in Multiple Attribute Authorities Environment

Wei Jiang-Hong^{* 胡学先刘文芬
,},
Hu Xue-Xian,
Liu Wen-Fen

摘要

摘要: 已有基于属性的认证密钥交换协议都是在单属性机构环境下设计的，而实际应用中不同属性机构下的用户也有安全通信的需求。该文在Waters属性基加密方案的基础上提出了一个多属性机构环境下的属性基认证密钥交换协议，并在基于属性的eCK(extended Canetti-Krawczyk)模型中将该协议的安全性归约到GBDH(Gap Bilinear Diffie-Hellman)和CDH(Computational Diffie-Hellman)假设，又通过布尔函数传输用线性秘密共享机制设计的属性认证策略，在制订灵活多样的认证策略的同时，显著地降低了通信开销。
- 认证密钥交换 /
- 属性认证 /
- 多属性机构 /
- ABeCK模型
Abstract: Available Attribute-Based Authenticated Key Exchange (ABAKE) protocols are all designed in the single Attribute Authority (AA) environment. However, secure communication is in demand between parties from different Attribute Authorities (AAs). Based on Waters attribute-based encryption scheme, an ABAKE protocol is proposed in multiple AAs environment and the security of the proposed protocol is reduced to Gap Bilinear Diffie-Hellman (GBDH) and Computational Diffie-Hellman (CDH) assumptions in the Attribute-Based extended Canetti-Krawczyk (ABeCK) model. Moreover, the scheme, which transmits attribute authentication policy represented by linear secret sharing scheme via Boolean formulas, can express flexible policies and decrease communication cost drastically.
- Authenticated key exchange /
- Attribute authentication /
- Multiple Attribute Authorities (AA) /
- Attribute-Based extended Canetti-Krawczyk (ABeCK) model