作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2019, Vol. 45 ›› Issue (6): 171-174. doi: 10.19678/j.issn.1000-3428.0054123

• 安全技术 • 上一篇    下一篇

国密SM9中R-ate双线性对快速计算

甘植旺1,廖方圆2   

  1. 1.中国电子科技集团公司信息科学研究院,北京100086; 2.中国电子科技集团有限公司,北京100846
  • 收稿日期:2019-03-06 出版日期:2019-06-15 发布日期:2019-06-15
  • 作者简介:甘植旺(1988—),男,工程师、博士,主研方向为网络与信息安全;廖方圆,高级工程师。
  • 基金资助:

    中国电科网络安全和信息化行动计划项目。

Rapid calculation of R-ate bilinear pairing in China state cryptography standard SM9

GAN Zhiwang1,LIAO Fangyuan2   

  1. 1.Information Science Academy of China Electronics Technology Group Corporation,Beijing 100086,China;2.China Electronics Technology Group Corporation,Beijing 100846,China
  • Received:2019-03-06 Online:2019-06-15 Published:2019-06-15

摘要:

R-ate是国密SM9标识密码算法中一种重要的双线性映射,其计算性能对SM9密码体制的应用至关重要。为提升R-ate双线性对的计算效率,提出一种快速计算算法。通过对BN曲线上R-ate双线性对的计算过程和其中涉及的逆运算原理进行分析,改变计算中同构映射的作用顺序,将大部分逆运算从大特征域转到小特征域,以降低逆元求解的计算损耗。以SM9的系统参数为计算实例进行实验,结果表明,该算法的运行时间低至1.8×105 ms。

关键词: 国密SM9, 双线性对, R-ate计算, 标识密码算法, 椭圆曲线对

Abstract:

R-ate is an important bilinear mapping in the Identity-Based Cryptography(IBC) algorithm of China state cryptography standard SM9.Its computational performance is very important to the application of SM9 cryptosystem.To improve the computational efficiency of R-ate bilinear pairing,a fast computational algorithm is proposed.By analyzing the computation process of R-ate bilinear pairing on BN curves and the involved principle of inverse operations,the order in which isomorphic mapping takes effect in computation is changed,and most of the inverse operations are transferred from the large feature domain to small feature domain to reduce the computation loss of inverse element solution.The system parameters of SM9 are taken as an example to carry out experiments.Results show that the running time of the proposed algorithm is only 1.8×105 ms.

Key words: China state cryptography standard SM9, bilinear pairing, R-ate computing, Identity-Based Cryptography(IBC) algorithm, elliptic curve pairing

中图分类号: