基于单边和双边两方理想格的匿名移动通信认证密钥建立协议的安全性分析与设计

IF 4.9 3区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Computers & Electrical Engineering Pub Date : 2025-10-17 DOI:10.1016/j.compeleceng.2025.110750

Mani R. , Dharminder Chaudhary , A. Padmavathi , Cheng-Chi Lee

{"title":"基于单边和双边两方理想格的匿名移动通信认证密钥建立协议的安全性分析与设计","authors":"Mani R. , Dharminder Chaudhary , A. Padmavathi , Cheng-Chi Lee","doi":"10.1016/j.compeleceng.2025.110750","DOIUrl":null,"url":null,"abstract":"<div><div>A two-party authenticated key establishment based on lattices allows two entities to set up a shared secret key securely over a vulnerable transmission medium while ensuring authentication of the participating parties. Given quantum computers promising danger to conventional cryptographic systems, lattice-based protocols utilize quantum-resistant cryptographic primitives (Ring Learning With Error) to provide security guarantees. Many lattice-based authentication key exchange protocols have been designed in the last few years. In this article, the authors have performed a security analysis and they have designed unilateral and bilateral two party ideal-lattice based authenticated key establishment protocols (depending on whether authentication is one-sided (unilateral) or mutual (bilateral), their applications vary) for anonymous mobile communication. In unilateral authentication (HTTPS/TLS 1.3), only one party (typically a server) proves its identity, while the other remains anonymous or does not require explicit authentication. In bilateral authentication (Signal, WhatsApp, Telegram), both parties verify each other’s identities before establishing a secure session. The proposed scheme incorporates forward-secure properties to ensure that even if the long-term key are compromised, the confidentiality of past communication does not hamper. This protocol also provides anonymity, essential for safeguarding individual liberties and preserving confidentiality in sensitive communication scenarios. The protocol possesses a minimum number of exchanged messages and can reduce the number of communication rounds to help minimize the communication overhead.</div></div>","PeriodicalId":50630,"journal":{"name":"Computers & Electrical Engineering","volume":"128 ","pages":"Article 110750"},"PeriodicalIF":4.9000,"publicationDate":"2025-10-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Security analysis and designing unilateral and bilateral two party ideal-lattice based authenticated key establishment protocol for anonymous mobile communication\",\"authors\":\"Mani R. , Dharminder Chaudhary , A. Padmavathi , Cheng-Chi Lee\",\"doi\":\"10.1016/j.compeleceng.2025.110750\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><div>A two-party authenticated key establishment based on lattices allows two entities to set up a shared secret key securely over a vulnerable transmission medium while ensuring authentication of the participating parties. Given quantum computers promising danger to conventional cryptographic systems, lattice-based protocols utilize quantum-resistant cryptographic primitives (Ring Learning With Error) to provide security guarantees. Many lattice-based authentication key exchange protocols have been designed in the last few years. In this article, the authors have performed a security analysis and they have designed unilateral and bilateral two party ideal-lattice based authenticated key establishment protocols (depending on whether authentication is one-sided (unilateral) or mutual (bilateral), their applications vary) for anonymous mobile communication. In unilateral authentication (HTTPS/TLS 1.3), only one party (typically a server) proves its identity, while the other remains anonymous or does not require explicit authentication. In bilateral authentication (Signal, WhatsApp, Telegram), both parties verify each other’s identities before establishing a secure session. The proposed scheme incorporates forward-secure properties to ensure that even if the long-term key are compromised, the confidentiality of past communication does not hamper. This protocol also provides anonymity, essential for safeguarding individual liberties and preserving confidentiality in sensitive communication scenarios. The protocol possesses a minimum number of exchanged messages and can reduce the number of communication rounds to help minimize the communication overhead.</div></div>\",\"PeriodicalId\":50630,\"journal\":{\"name\":\"Computers & Electrical Engineering\",\"volume\":\"128 \",\"pages\":\"Article 110750\"},\"PeriodicalIF\":4.9000,\"publicationDate\":\"2025-10-17\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Computers & Electrical Engineering\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S0045790625006937\",\"RegionNum\":3,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computers & Electrical Engineering","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0045790625006937","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

摘要

基于格的双方认证密钥建立允许两个实体在易受攻击的传输介质上安全地建立共享密钥，同时确保参与方的身份验证。鉴于量子计算机对传统密码系统有威胁，基于格的协议利用抗量子密码原语（带错误的环学习）来提供安全保证。在过去几年中，已经设计了许多基于格的身份验证密钥交换协议。在本文中，作者进行了安全性分析，并设计了基于单边和双边两方理想格的身份验证密钥建立协议（取决于身份验证是单边（单边）还是相互（双边），其应用有所不同），用于匿名移动通信。在单边身份验证（HTTPS/TLS 1.3）中，只有一方（通常是服务器）证明其身份，而另一方保持匿名或不需要显式身份验证。在双边认证（Signal, WhatsApp, Telegram）中，双方在建立安全会话之前先验证对方的身份。该方案结合了前向安全特性，以确保即使长期密钥被泄露，过去通信的机密性也不会受到影响。该协议还提供匿名性，这对于在敏感的通信场景中保护个人自由和保密性至关重要。该协议具有最小数量的交换消息，并可以减少通信轮数，以帮助最小化通信开销。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Security analysis and designing unilateral and bilateral two party ideal-lattice based authenticated key establishment protocol for anonymous mobile communication

A two-party authenticated key establishment based on lattices allows two entities to set up a shared secret key securely over a vulnerable transmission medium while ensuring authentication of the participating parties. Given quantum computers promising danger to conventional cryptographic systems, lattice-based protocols utilize quantum-resistant cryptographic primitives (Ring Learning With Error) to provide security guarantees. Many lattice-based authentication key exchange protocols have been designed in the last few years. In this article, the authors have performed a security analysis and they have designed unilateral and bilateral two party ideal-lattice based authenticated key establishment protocols (depending on whether authentication is one-sided (unilateral) or mutual (bilateral), their applications vary) for anonymous mobile communication. In unilateral authentication (HTTPS/TLS 1.3), only one party (typically a server) proves its identity, while the other remains anonymous or does not require explicit authentication. In bilateral authentication (Signal, WhatsApp, Telegram), both parties verify each other’s identities before establishing a secure session. The proposed scheme incorporates forward-secure properties to ensure that even if the long-term key are compromised, the confidentiality of past communication does not hamper. This protocol also provides anonymity, essential for safeguarding individual liberties and preserving confidentiality in sensitive communication scenarios. The protocol possesses a minimum number of exchanged messages and can reduce the number of communication rounds to help minimize the communication overhead.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Computers & Electrical Engineering 工程技术-工程：电子与电气

CiteScore

9.20

自引率

7.00%

发文量

661

审稿时长

47 days

期刊介绍： The impact of computers has nowhere been more revolutionary than in electrical engineering. The design, analysis, and operation of electrical and electronic systems are now dominated by computers, a transformation that has been motivated by the natural ease of interface between computers and electrical systems, and the promise of spectacular improvements in speed and efficiency. Published since 1973, Computers & Electrical Engineering provides rapid publication of topical research into the integration of computer technology and computational techniques with electrical and electronic systems. The journal publishes papers featuring novel implementations of computers and computational techniques in areas like signal and image processing, high-performance computing, parallel processing, and communications. Special attention will be paid to papers describing innovative architectures, algorithms, and software tools.