To overcome the problems that there are unsafe loopholes,functional duplication in TCG authorization protocols,a new trusted computing authorization protocol is proposed in the paper,in which the session key is introduced in the new protocol generated by Diffie_Hellman algorithm to guarantee its confidentiality.The new protocol can provide the function of anti-replay attack and can be applied to multiple entities.It can also guarantee the communication integrity and confidentiality of data effectively.The security properties are analyzed and verified by BAN logic in the paper.%针对TCG授权协议OIAP和OSAP的安全缺陷、功能重叠等问题,提出了一种新的可信计算授权协议(OICAP).该协议通过引入Diffie-Hellman密钥交换算法产生的会话密钥保证其机密性,适用于多个实体,能够抗重放攻击,保证了通信数据的完整性和机密性.通过对新授权协议进行BAN逻辑分析,表明该协议能够达到预期效果.
展开▼
