格上具有完全前向安全的0轮往返时间密钥交换协议

0-RTT密钥交换协议允许客户端在零往返时间发送加密保护的有效载荷和第一条密钥交换协议消息,具有非交互、可离线等优点。为了降低密钥交换往返时间,基于穿透加密思想提出一种格上0-RTT密钥交换协议。首先利用一次性签名算法和分级身份基密钥封装机制构造可穿透前向保密密钥封装方案,然后使用可穿透前向保密密钥封装方案设计0-RTT密钥交换协议。协议只需客户端对服务器进行单向认证,并且能够有效抵抗量子攻击和重放攻击。与同类协议相比,所提协议具有可穿透的完全前向安全,减少了通信轮数,提高了通信效率。

Zero round trip time key exchange protocol with full forward secrecy on lattice

0-RTT key exchange protocol allows clients to send encrypted protected payloads and the first key exchange protocol message at zero round-trip time,which has the advantages of non-interactive and off-line.In order to reduce the round-trip time of key exchange,this paper proposed a 0-RTT key exchange protocol on lattice based on the idea of penetrating encryption.Firstly,it utilized the one-time signatures algorithm and the hierarchical identity-based key encapsulation mechanism to construct penetrable forward secret key encapsulation scheme,and then used the penetrable forward secret key encapsulation scheme to design a 0-RTT key exchange protocol.The protocol only required the client side to authenticate the server one-way,and could effectively resist the quantum attack and replay attack.Compared with similar protocols,the proposed protocol has penetrable full forward secrecy,reduces the number of communication rounds and improves the communication efficiency.