摘要: 基于身份的认证密钥协商(ID-AKA)协议大多效率低下、安全性较低。针对该问题,提出一个新的ID-AKA协议。利用模块化的方法证明新协议在mBR模型满足抗密钥泄露模仿攻击、完美前向安全性以及PKG-前向安全性。新协议还满足抗临时秘密泄露攻击。与同安全级别的协议相比,新协议的效率更高。
关键词:
基于身份的认证密钥协商协议,
可证明安全,
模块化方法,
双线性对,
前向安全性
Abstract: Most Identity-based Authenticated Key Agreement(ID-AKA) protocols have poor performance on security and the efficiency. To solve this problem, this paper presents an improved ID-AKA protocol. Security proof with the modular approach in the mBR model is provided, which means the new protocol satisfies perfect forward security, PKG forward security, resistant to key-compromise impersonation. Furthermore, the new protocol can satisfy resistance to leakage of ephemeral secrets. Compared with previous ID-AKA protocols which can satisfy the same security properties, the new protocol has higher efficiency.
Key words:
Identity-based Authenticated Key Agreement(ID-AKA) protocol,
security-provable,
modular approach,
bilinear parings,
Forward Security(FS)
中图分类号:
王亚飞, 周本东. 一种可证明安全的ID-AKA协议[J]. 计算机工程, 2012, 38(9): 144-147,165.
WANG E-Fei, ZHOU Ben-Dong. Security-provable Identity-based Authenticated Key Agreement Protocol[J]. Computer Engineering, 2012, 38(9): 144-147,165.