摘要： 针对三方认证密钥协商协议容易遭受假冒攻击和中间人攻击的缺点，提出一种基于身份的三方认证密钥协商改进协议。该协议综合运用基于身份的密码学、椭圆曲线密码学和哈希函数技术建立用户之间的认证关系，以抵抗假冒攻击和重放攻击。分析结果表明，该协议基于CDH假设是可证安全的，与Tan改进协议相比，效率较高。

关键词: 密钥协商, 基于身份, 中间人攻击, 椭圆曲线, 哈希函数, 可证明安全

Abstract: Aiming at the disadvantages that 3-Party Authenticated Key Agreement(3-PAKA) protocols are vulnerable to the impersonation attack and the man-in-the-middle attack, an improved ID-based authenticated key agreement protocol for 3-party is proposed. The new protocol adopts ID-based cryptography, elliptic curve cryptography and hash function techniques. Analysis results show that the proposed protocol is provable secure under Computational Diffie-Hellman(CDH) assumptions in the standard model, and it can resist against the man-in-the-middle attack. Additionally, an efficiency comparison of the proposed protocol and other improved protocols is given, and the protocol is more efficient.

Key words: key agreement, ID-based, man-in-the-middle attack, elliptic curve, hash function, provable security

中图分类号: 

• TP309