文中基于多线性表的性质,综合椭圆曲线上离散对数问题,提出一个新的基于无证书的多方密钥协商方案.新协议避免了传统的基于证书的方案中复杂的证书管理问题,解决了基于身份的组密钥协商方案中固有的密钥托管问题,实现了对通信各方的身份认证,有效防止了主动攻击.最后,通过计算验证了会话密钥的一致性,采用应用Pi演算对协议进行形式化分析验证了协议的安全性.和其它可认证组密钥协商协议相比,新方案用较小的计算开销换取了协议的更强安全性,协议的实用性大大增强.%An certificaleless-based authenticated group key agreement protocol is proposed based on the property multilinear forms and elliptic curve discrete logarithm problem. The new scheme not only avoids the complex management of certificates in PKJ scheme, but also avoids the key escrow issues inherited in the identity-based schemes effectively and prevents active attack by identity authentication. And then, the correctness of the session key is confirmed by computing, the formal analysis based on applied Pi calculus has shown fulfilled authentication and security. Compared with other authenticated group key agreement protocols,die newly proposed group key agreement protocol has better security with the cost of little computation and more stronger practicality.
展开▼
