Based on signcryption scheme, Liu-Xu proposes an efficient certificateless authenticated two-party key agreement protocol. Security analysis shows that the scheme hasn' t achieved strong security due to redundancy of the exchange messages. The scheme is vulnerable to passive attack and active attack. To overcome the problem mentioned above, an improved scheme without using signcryption scheme is proposed. Analysis result proves that the efficiency and security of the proposed protocol is improved.%基于签密方案,Liu-Xu构造了一个高效的无证书两方认证密钥协商协议.对Liu-Xu的方案进行安全性分析,指出由于传送消息存在冗余,该方案不具有强安全性.该方案不能抵抗被动攻击和主动攻击.提出一个改进的方案来修正上述问题,新方案没有使用签密方案.分析结果表明,新协议的效率和安全性提高明显.
展开▼
