首页 | 本学科首页   官方微博 | 高级检索  
     

基于身份的电子文档域密钥分发算法及协议
引用本文:闫玺玺,马兆丰,杨义先,钮心忻. 基于身份的电子文档域密钥分发算法及协议[J]. 通信学报, 2012, 33(5): 12-20
作者姓名:闫玺玺  马兆丰  杨义先  钮心忻
作者单位:北京邮电大学 信息安全中心,北京100876;北京国泰信安科技有限公司,北京100086
基金项目:国家重点基础研究发展计划(“973”计划)基金资助项目(2007CB311203);国家自然科学基金资助项目(60803157,90812001)~~
摘    要:为了实现电子文档安全管理环境中域间用户的通信安全,采用双线性对构造了一个适用于大数量、动态域组的基于身份的域密钥分发算法,该算法实现了域环境下用户的动态加入与离开,通过广播加密的方式使域用户获得更新后的域密钥,避免了复杂的密钥更新协商协议.另外,提出基于共享域的电子文档管理协议,实现域内用户共享,不同域之间安全分发电子文档.在该协议工作下,共享域内每个用户合法获得的电子文档可以在域中各设备间无缝地流动,实现资源共享.不同的域之间电子文档的传输有严格的限制,需要经服务器认证,确保电子文档的安全管理与防泄密.

关 键 词:  域密钥分发  广播加密  电子文档安全管理

Identity-based domain key distribution protocol in the E-document security management
YAN Xi-xi , MA Zhao-feng , YANG Yi-xian , NIU Xin-xin. Identity-based domain key distribution protocol in the E-document security management[J]. Journal on Communications, 2012, 33(5): 12-20
Authors:YAN Xi-xi    MA Zhao-feng    YANG Yi-xian    NIU Xin-xin
Affiliation:1,2 (1.Information Security Center,Beijing University of Posts and Telecommunications,Beijing 100876,China; 2.Beijing National Security Science and Technology Co.Ltd,Beijing 100086,China)
Abstract:In order to create a security domain environment in the E-document management,an identity domain key distribution scheme using bilinear pairings for large and dynamic domain was proposed.The scheme could handle the joining and leaving of domain members efficiently,and updateed the domain key in the manner of broadcast,which avoided the complex protocols of key agreement.In addition,the distribution protocol based sharing-domain for E-document was also given,which aimed to realize the function of sharing the documents in a domain and distributing the documents between different domains securely.With the protocol,the E-documents obtained by a domain member could be transmitted to other domain members seamlessly.On the opposite,the E-document which was distributed to another domain need to be upload to the server,which would verify the identity of the domain member and encrypt the documents with the specified domain key.
Keywords:domain  domain key distribution  broadcast and encrypt  E-document security management
本文献已被 CNKI 万方数据 等数据库收录!
点击此处可从《通信学报》浏览原始摘要信息
点击此处可从《通信学报》下载全文
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号