摘要： 对基于身份的认证密钥协商协议进行安全性分析，指出其可能遭遇多余信息、伪装攻击和已知临时秘密泄漏攻击。为解决上述安全隐患，在原协议的基础上提出一种改进协议，并分析其非形式化下的安全性和协议运行效率。分析结果表明，改进的协议满足目前已知的所有密钥协商协议的安全性要求，具有较高的效率。

关键词: 基于身份, 认证密钥协商, 密钥生成器, 双线性对, 无密钥托管

Abstract: The security of an ID-based authentication key agreement protocol is analyzed, the existence of security flaws such as redundant information, impersonation attacks and temporary secret information leakage attacks is point out. To overcome these security flaws, an improved protocol is proposed based on the original protocol, the security and the operating efficient of the improved protocol are analyzed under non-formalization. It shows that the improved ID-based authenticated key agreement protocol can satisfy all the security requirements of the key agreement protocol, which is with high efficiency.

Key words: ID-based, authenticated key agreement, Private Key Generator(PKG), bilinear pairing, key escrowless

中图分类号: 

• TP309