Abstract:
Separable and Anonymous identitybased Key Issuing(SAKI) scheme can solve the problems that how to authenticate the user’s identity and distribute the user’s private key in identitybased cryptography, but it has secure flaws. This paper investigates the secure flaws of SAKI scheme and proposes an improved scheme. Comparison analysis result shows that the improved scheme keeps simplicity and high efficiency of SAKI, and can resist keyword dictionary attack, stolen verifier attack, maninmiddle attack and privacy key integrality attack.
Key words:
identitybased,
Separable and Anonymous identitybased Key Issuing(SAKI) scheme,
bilinear pairing,
supersingular elliptic curve
摘要: SAKI方案可以有效解决基于身份的密码体制中用户如何向私钥产生中心证明自己的身份并安全得到其产生的用户私钥这2个问题,但其存在安全缺陷。针对上述情况,提出改进的方案。对比分析结果证明,改进的方案在保留SAKI方案简单、高效等优点的同时,可以抵抗口令的字典攻击、偷取认证攻击、中间人攻击和私钥申请报文完整性攻击。
关键词:
基于身份,
SAKI方案,
双线性对,
超奇异椭圆曲线
CLC Number:
LI Nan, GU Shan, SU Jin-Hai. Analysis and Improvement of Separable and Anonymous
Identitybased Private Key Issuing Scheme[J]. Computer Engineering, 2010, 36(23): 116-118.
李楠, 谷山, 苏锦海. SAKI方案的分析及改进[J]. 计算机工程, 2010, 36(23): 116-118.