现有的基于身份(ID)认证协议大多在CK模型中被证明是安全的,而CK模型比扩展的CK模型(eCK模型)更弱.基于NAXOS方法,利用双线性对设计了一种新协议,并基于随机预言假设和GBDH假设,在eCK模型中证明了协议的安全性.与其他的基于身份认证协议相比,新协议的计算复杂度和通信复杂度较低;满足主密钥前向安全性和完美前向安全性,并抗密钥泄漏伪装.%Most of the existing Identity-based (ID) authenticated protocols are proven secure in the Canetti-Krawczyk (CK) model which is weaker than the extended Canetti-Krawczyk (eCK) model. Based on NAXOS trick, a new scheme using bilinear pairing was proposed. The security of the scheme was proven in the eCK model under the random oracle assumption and the Gap Bilinear Diffie-Hellman ( GBDH) assumption. The proposed protocol was efficient in computational cost and communication round when compared with other solutions. The new protocol also satisfied master key forward security, perfect forward security and anti-key-leak disguise.
展开▼