阮 鸥,王子豪,张明武.一种高效的匿名口令认证密钥交换协议[J].中南民族大学学报自然科学版,2018,(2):109-113,127
一种高效的匿名口令认证密钥交换协议
An Efficient Anonymous Password-based Authenticated Key Exchange Protocol
  
DOI:10.12130/znmdzk.20180123
中文关键词: 密钥交换协议  匿名认证  认证密钥交换协议  口令认证  可证明安全
英文关键词: key exchange protocol  anonymous authentication  authenticated key exchange  password-based authentication  provable security
基金项目:国家自然科学基金项目(61370224,61672010) ; 湖北省自然科学基金面上项目(2017CFB596) ; 湖北工业大学绿色工业科技引领计划项目(ZZTS2017006)
作者单位
阮 鸥,王子豪,张明武 湖北工业大学 计算机学院武汉 430068 
摘要点击次数: 943
全文下载次数: 766
中文摘要:
      针对云计算等网络新应用中用户隐私保护问题, 提出了基于椭圆曲线 CDH 假设的匿名口令认证密钥交换 APAKE 协议,通过它用户既能与服务器建立共享会话密钥,又不会暴露其真实身份信息. 通过系统模型、 安全模型定义及严格的形式化证明,验证了此 APAKE 协议满足正确性、 PAKE 安全性及用户匿名性. 通过与现有协议对比分析表明: 所提 APAKE 协议既能抵抗身份冒充攻击及离线口令猜测攻击, 也提供双向认证; 协议效率得到很大提高,客户端及服务器端计算复杂度均有大幅降低
英文摘要:
      According to the problem of protecting users’ privacy in the new applications of network such as cloud computing, an anonymous password-based authenticated key exchange (APAKE) protocol based on CDH assumption of elliptic curve cryptography is proposed, in which a client can establish a shared session key with the server authentically and anonymously. The system model, security model and formal proofs illustrate that the proposed APAKE protocol satisfies three properties: correctness, PAKE security and user’s privacy. Based on the analyzes with the existing APAKE protocols, it is shown that the protocol is secure against impersonating attack and off-line dictionary attack, and provides mutual authentication; and the new construction is more efficient than others’APAKE protocols.
查看全文   查看/发表评论  下载PDF阅读器
关闭