An Enhanced Identity-based Authentication Key Agreement Protocol for Mobile Internet

doi:10.19678/j.issn.1000-3428.0053945

Abstract

Abstract: To address the problems of time-consuming bilinear pairings and the heavy burden of PKI certificate management,WANG Z,et al.proposed an identity-based efficient Authentication Key Agreement(AKA) protocol for mobile Internet(Journal of Communications,2017,No.8),but this protocol cannot resist the attack of temporary private key leakage and does not have eCK security.For this reason,an identity-based authentication AKA protocol without bilinear pairings operation is proposed,whose eCK security is proved under the GDH assumption and random oracle model.Analysis results show that this protocol only needs four elliptic curve point multiplication in the key agreement stage,which is more efficient than CKD-10,XW-12,WML-17 and other protocols.Meanwhile,its single round communication times and computational cost are less,which is suitable for mobile Internet environment.

Key words: bilinear pairings, attack, eCK model, identity-based cryptography, Authentication Key Agreement(AKA)

摘要： 针对双线性对运算耗时较多和PKI证书管理负担重的问题，王真等人提出基于身份的移动互联网高效认证密钥协商协议（通信学报，2017年第8期），但该协议不能抵抗临时私钥泄露攻击，不具备eCK安全性。为此，提出一种不使用双线性对运算的身份基认证密钥协商协议，并在GDH假设和随机预言机模型下，证明其具备eCK安全性。分析结果表明，该协议密钥协商阶段仅需4个椭圆曲线点乘运算，与CKD-10、XW-12、WML-17等协议相比效率较高，单轮通信次数和计算代价较少，适用于移动互联网环境。

关键词: 双线性对, 攻击, eCK模型, 基于身份的密码学, 认证密钥协商

CLC Number:

TP309

SUN Haiyan, LI Lingling, ZHANG Ling, ZHANG Jianwei, HUANG Wanwei. An Enhanced Identity-based Authentication Key Agreement Protocol for Mobile Internet[J]. Computer Engineering, 2019, 45(9): 153-160,182.

孙海燕, 李玲玲, 张玲, 张建伟, 黄万伟. 一种增强的移动互联网身份基认证密钥协商协议[J]. 计算机工程, 2019, 45(9): 153-160,182.

/ / Recommend / Download Citations

URL: http://www.ecice06.com/EN/10.19678/j.issn.1000-3428.0053945

http://www.ecice06.com/EN/Y2019/V45/I9/153

Figures/Tables 1

References

[1] SHAMIR A.Identity-based cryptosystems and signature schemes[C]//Proceedings of Cryptology-Crypto’84.Berlin,Germany:Springer,1984:47-53.
[2] SMART N P.An identity based authenticated key agreement protocol based on the Weil pairing[J].Electronics Letters,2002,38(13):630-632.
[3] CHEN Liqun,CHENG Zhaohui,SMART N P.Identity-based key agreement protocols from pairings[J].International Journal of Information Security,2007,6(4):213-241.
[4] HUANG Hai,CAO Zhenfu.An ID-based authenticated key exchange protocol based on bilinear Diffie-Hellman problem[C]//Proceedings of the 4th International Symposium on Information,Computer,and Communications Security.Berlin,Germany:Springer,2009:363-368.
[5] PANDIT T,BARUA R,TRIPATHY S.eCK secure single round ID-based authenticated key exchange protocols with master perfect forward secrecy[C]//Proceedings of the 8th International Conference on Network and System Security.Berlin,Germany:Springer,2014:435-447.
[6] ARANHAD F,FAZ-HERNÁNDEZ A,LÓPEZ J,et al.Faster implementation of scalar multiplication on Koblitz curves[C]//Proceedings of the 2nd International Conference on Cryptology and Information Security in Latin America.Berlin,Germany:Springer,2012:177-193.
[7] BELLARE M,ROGAWAY P.Entity authentication and key distribution[C]//Proceedings of Cryptology-Crypto’93.Berlin,Germany:Springer,1993:232-249.
[8] CANETTI R,KRAWCZYK H.Analysis of key-exchange protocols and their use for building secure channels[C]//Proceedings of Cryptology-Eurocrypt’01.Berlin,Germany:Springer,2001:453-474.
[9] LaMACCHIA B,LAUTER K,MITYAGIN A.Stronger security of authenticated key exchange[C]//Proceedings of the 1st International Conference on Provable Security.Berlin,Germany:Springer,2007:1-16.
[10] ZHUA R W,YANG Guoming,WONG D S.An efficient identity-based key exchange protocol with KGS forward secrecy for low-power devices[J].Theoretical Computer Science,2007,378(2):198-207.
[11] 曹雪菲,寇卫东,樊凯,等.无双线性对的基于身份的认证密钥协商协议[J].电子与信息学报,2009,31(5):1241-1244.
[12] CAO Xuefei,KOU Weidong,DU Xiaoni.A pairing-free identity-based authenticated key agreement protocol with minimal message exchanges[J].Information Sciences,2010,180(15):2895-2903.
[13] 李坤.基于身份的认证密钥协商协议研究[D].西安:西安电子科技大学,2013.
[14] FIORE D,GENNARO R.Making the Diffie-Hellman protocol identity-based[C]//Proceedings of Cryptology-CT-RSA’10.Berlin,Germany:Springer,2010:165-178.
[15] XIE Min,WANG Libin.One-round identity-based key exchange with perfect forward security[J].Information Processing Letters,2012,112(14/15):587-591.
[16] 孙海燕.认证密钥协商协议及其应用[D].北京:北京邮电大学,2014.
[17] SUN Haiyan,WEN Qiaoyan,ZHANG Hua,et al.A strongly secure identity-based authenticated key agreement protocol without pairings under the GDH assumption[J].Security and Communication Networks,2015,8(17):3167-3179.
[18] NI Liang,CHEN Gongliang,LI Jianhua,et al.Strongly secure identity-based authenticated key agreement protocols without bilinear pairings[J].Information Sciences,2016,367-368(1):176-193.
[19] 王真,马兆丰,罗守山.基于身份的移动互联网高效认证密钥协商协议[J].通信学报,2017,38(8):19-27.
[20] SUN Haiyan,WEN Qiaoyan,LI Wenmin.A strongly secure pairing-free certificateless authenticated key agreement protocol under the CDH assumption[J].SCIENCE CHINA Information Sciences,2016,59(3):1-15.

Please choose a citation manager

Content to export