基于身份的身份验证密钥协议协议

16th IEEE Computer Security Foundations Workshop, 2003. Proceedings. Pub Date : 2003-07-15 DOI:10.1109/CSFW.2003.1212715

Liqun Chen, C. Kudla

{"title":"基于身份的身份验证密钥协议协议","authors":"Liqun Chen, C. Kudla","doi":"10.1109/CSFW.2003.1212715","DOIUrl":null,"url":null,"abstract":"We investigate a number of issues related to identity based authenticated key agreement protocols in the Diffie-Hellman family enabled by the Weil or Tate pairings. These issues include how to make protocols efficient; to avoid key escrow by a Trust Authority (TA) who issues identity based private keys for users, and to allow users to use different TAs. We describe a few authenticated key agreement (AK) protocols and AK with key confirmation (AKC) protocols by modifying Smart's AK protocol (2002). We discuss the security of these protocols heuristically and give formal proofs of security for our AK and AKC protocols (using a security model based on the model defined in (Blake-Wilson et al., 1997)). We also prove that our AK protocol has the key compromise impersonation property. We also show that our second protocol has the TA forward secrecy property (which we define to mean that the compromise of the TA's private key will not compromise previously established session keys), and we note that this also implies that it has the perfect forward secrecy property.","PeriodicalId":283743,"journal":{"name":"16th IEEE Computer Security Foundations Workshop, 2003. Proceedings.","volume":"32 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2003-07-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"301","resultStr":"{\"title\":\"Identity based authenticated key agreement protocols from pairings\",\"authors\":\"Liqun Chen, C. Kudla\",\"doi\":\"10.1109/CSFW.2003.1212715\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"We investigate a number of issues related to identity based authenticated key agreement protocols in the Diffie-Hellman family enabled by the Weil or Tate pairings. These issues include how to make protocols efficient; to avoid key escrow by a Trust Authority (TA) who issues identity based private keys for users, and to allow users to use different TAs. We describe a few authenticated key agreement (AK) protocols and AK with key confirmation (AKC) protocols by modifying Smart's AK protocol (2002). We discuss the security of these protocols heuristically and give formal proofs of security for our AK and AKC protocols (using a security model based on the model defined in (Blake-Wilson et al., 1997)). We also prove that our AK protocol has the key compromise impersonation property. We also show that our second protocol has the TA forward secrecy property (which we define to mean that the compromise of the TA's private key will not compromise previously established session keys), and we note that this also implies that it has the perfect forward secrecy property.\",\"PeriodicalId\":283743,\"journal\":{\"name\":\"16th IEEE Computer Security Foundations Workshop, 2003. Proceedings.\",\"volume\":\"32 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2003-07-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"301\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"16th IEEE Computer Security Foundations Workshop, 2003. Proceedings.\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CSFW.2003.1212715\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"16th IEEE Computer Security Foundations Workshop, 2003. Proceedings.","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSFW.2003.1212715","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 301

摘要

我们研究了许多与由Weil或Tate配对支持的Diffie-Hellman家族中基于身份的身份验证密钥协议协议相关的问题。这些问题包括如何使协议高效;避免由为用户颁发基于身份的私钥的信任机构(TA)进行密钥托管，并允许用户使用不同的TA。通过对Smart的AK协议(2002)的修改，我们描述了几种认证密钥协议(AK)和带密钥确认的AK协议(AKC)。我们启发式地讨论了这些协议的安全性，并为我们的AK和AKC协议提供了正式的安全性证明(使用基于(Blake-Wilson等人，1997)中定义的模型的安全模型)。我们还证明了我们的AK协议具有密钥泄露模拟特性。我们还展示了我们的第二个协议具有TA的前向保密属性(我们将其定义为意味着TA的私钥的妥协不会危及先前建立的会话密钥)，并且我们注意到这也意味着它具有完美的前向保密属性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Identity based authenticated key agreement protocols from pairings

We investigate a number of issues related to identity based authenticated key agreement protocols in the Diffie-Hellman family enabled by the Weil or Tate pairings. These issues include how to make protocols efficient; to avoid key escrow by a Trust Authority (TA) who issues identity based private keys for users, and to allow users to use different TAs. We describe a few authenticated key agreement (AK) protocols and AK with key confirmation (AKC) protocols by modifying Smart's AK protocol (2002). We discuss the security of these protocols heuristically and give formal proofs of security for our AK and AKC protocols (using a security model based on the model defined in (Blake-Wilson et al., 1997)). We also prove that our AK protocol has the key compromise impersonation property. We also show that our second protocol has the TA forward secrecy property (which we define to mean that the compromise of the TA's private key will not compromise previously established session keys), and we note that this also implies that it has the perfect forward secrecy property.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

16th IEEE Computer Security Foundations Workshop, 2003. Proceedings.

自引率

0.00%

发文量