| 一种基于身份的多信任域认证模型 |
| |
| 引用本文: | 彭华熹. 一种基于身份的多信任域认证模型[J]. 计算机学报, 2006, 29(8): 1271-1281 |
| |
| 作者姓名: | 彭华熹 |
| |
| 作者单位: | 中国科学院软件研究所信息安全国家重点实验室,北京,100080 |
| |
| 基金项目: | 国家自然科学基金;国家重点基础研究发展计划(973计划);国家自然科学基金 |
| |
| 摘 要: | 在分析了现有认证框架存在的问题的基础上,提出了一种基于身份的多信任域认证模型.该模型以基于身份的密码体制为基础,避免了基于传统PKI的认证框架的诸多弊端,实现了跨信任域的身份认证和资源访问主体的匿名性,并利用CK模型对该模型的身份认证和匿名性安全进行了详细的分析和证明.分析表明该模型是安全且满足安全需求的.
|
| 关 键 词: | 认证 基于身份的密码体制 匿名 安全性分析 |
| 收稿时间: | 2006-04-04 |
| 修稿时间: | 2006-04-042006-06-04 |
An Identity-Based Authentication Model for Multi-Domain |
| |
| PENG Hua-Xi. An Identity-Based Authentication Model for Multi-Domain[J]. Chinese Journal of Computers, 2006, 29(8): 1271-1281 |
| |
| Authors: | PENG Hua-Xi |
| |
| Affiliation: | State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, Beijing 100080 |
| |
| Abstract: | In this paper, the authors considers the especial requirements of the authentication model in multi-domain environments. He analyzes the problems of existing authentication frameworks, and proposes an identity-based authentication model for multi-domain. The model is based on identity-based public key cryptography, so as to overcome some problems posed by traditional authentication model based on PKI. Moreover, entity authentication for cross-domain and anonymity for subiect is supported in the model. Especially, by using the modular approach under the CK-model, the security of entity authentication and anonymity is analyzed. It is showed that the proposed model is secure and could achieve the security requirements. |
| |
| Keywords: | authentication identity-based public key cryptography anonymity security analysis |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
