摘要： 提出了一种新的密钥分拆体制，由此设计了一种新的动态密钥托管方案。新方案具有如下特点：(1)用户的密钥由用户和密钥管理中心(KMC)共同产生，可以防止阈下信道攻击；(2)强壮性，即使在恶意托管者人数大于或等于门限值时仍然无法获取用户的主密钥；每个托管人都能够验证他所托管子密钥的有效性，并且在监听阶段，监听机构能够确切知道哪些托管人伪造或篡改了子密钥；(3)动态性质，可以方便增删托管代理成员。有效地解决了“一次监听，永久监听”的问题，并且具有抵抗LEAF反馈攻击的特性。

关键词: 密钥托管, 椭圆曲线, 动态密钥托管, 托管代理, 监听

Abstract: A new kind of dynamic key escrow scheme is presented with a new secret sharing scheme. The scheme has the following properties: the user’s key is generated by himself and KMC, which can prevent subliminal channels attack; malice escrow agency fail to obtain the user’s secret key, even if the number of malice escrow agency is more than or equal to the value of threshold; every escrow agency can verify correctness of the secret shadow that he escrows during secret shadow distribution and monitor agency can exactly decide which escrow agency forges or tampers secret shadow during monitor procedure; the scheme is dynamic and can accept or fire a key agency easily; the problem of “once monitor, monitor forever” is solved effectively and it is also against LEAF feedback attack.

Key words: key escrow, elliptic curve, dynamic key escrow, escrow agent, monitor

中图分类号: 

• TP309