基于无证书的两方认证密钥协商协议

两方认证密钥协商协议的设计主要基于传统公钥密码体制和基于身份的公钥密码体制.基于无证书的认证密钥协商方案避免了基于传统公钥证书方案存在的身份管理复杂性,同时也消除了基于身份方案中所固有的密钥托管问题.Park等人在2007年提出了选择身份安全模型下抗选择明文攻击(IND-sID-CPA)的无证书加密方案,在该方案的启发下提出了基于无证书体制的两方认证密钥协商方案,并与其他方案进行了安全性和有效性比较.该方案满足目前已知的绝大多数安全属性要求,特别是完美前向安全性,PKG前向安全性,已知会话相关临时秘密信息安全性以及无密钥托管等安全特性,同时保持了良好的计算效率.

Certificateless-Based Two-Party Authenticated Key Agreement Protocol

Two-Party authenticated key agreement protocols are constructed mainly based on the traditional public key cryptography and identity-based public key cryptography. The certificateless-based authenticated key agreement protocols have the advantages of avoiding the complexity of identity management in the traditional certificate-based schemes, as well as the key escrow issues inherited in the identity-based schemes. In 2007, Park et al. proposed a certificateless-based public key encryption scheme which is provably secure against chosen plaintext attacks in the selective-ID security model (IND-sID-CPA). Inspired on such a scheme, this paper presents a two-party certificateless-based authenticated key agreement scheme and gives the comparisons with other comparable schemes in security and efficiency. The new proposed scheme achieves almost all of the desired security attributes, especially the Perfect forward secrecy, PKG forward secrecy, Known session-specific temporary information secrecy and Key escrowless. Meanwhile it keeps the nice efficiency.