Universally composable anonymous Hash certification model 被引量：9

Universally composable anonymous Hash certification model

导出

摘要 Ideal function is the fundamental component in the universally composable security model. However, the certification ideal function defined in the universally composable security model realizes the identity authentication by binding identity to messages and the signature, which fails to characterize the special security requirements of anonymous authentication with other kind of certificate. Therefore, inspired by the work of Marten, an anonymous hash certification ideal function and a more universal certificate CA model are proposed in this paper. We define the security requirements and security notions for this model in the framework of universal composable security and prove in the plain model （not in the random-oracle model） that these security notions can be achieved using combinations of a secure digital signature scheme, a symmetrical encryption mechanism, a family of pseudorandom functions, and a family of one-way collision-free hash functions. Considering the limitation of wireless environment and computation ability of wireless devices, this anonymous Hash certification ideal function is realized by using symmetry primitives. Ideal function is the fundamental component in the universally composable security model. However, the certification ideal function defined in the universally composable security model realizes the identity authentication by binding identity to messages and the signature, which fails to characterize the special security requirements of anonymous authentication with other kind of certificate. Therefore, inspired by the work of Marten, an anonymous hash certification ideal function and a more universal certificate CA model are proposed in this paper. We define the security requirements and security notions for this model in the framework of universal composable security and prove in the plain model （not in the random-oracle model） that these security notions can be achieved using combinations of a secure digital signature scheme, a symmetrical encryption mechanism, a family of pseudorandom functions, and a family of one-way collision-free hash functions. Considering the limitation of wireless environment and computation ability of wireless devices, this anonymous Hash certification ideal function is realized by using symmetry primitives.

作者 ZHANG Fan MA JianFeng SangJae MOON

机构地区 Key Laboratory of Computer Networks and Information Security (Ministry of Education) Mobile Network Security Technology Research Center

出处《Science in China(Series F)》 2007年第3期440-455,共16页 中国科学（F辑英文版）

基金 the National Natural Science Foundation of China (Grant Nos. 90204012, 60573035, and 60573036) the MIC of Korea,under the ITRC support program supervised by the IITA (IITA-2006-C1090-0603-0026)

关键词 ANONYMOUS AUTHENTICATION HASH universal composable security anonymous, authentication, Hash, universal composable security

分类号 TP309 [自动化与计算机技术—计算机系统结构]

作者简介 Corresponding author （email： fzhang@smu.edu.sg）

引文网络
相关文献

参考文献1

1季庆光,冯登国.对几类重要网络安全协议形式模型的分析[J].计算机学报,2005,28(7):1071-1083. 被引量：23

二级参考文献22

1Cervesato I., Durgin N.A., Lincoln P.D., Mitchell J.C., Scedrov A.. Relating strands and multiset rewriting for security protocol analysis. In: Proceedings of the 13th IEEE Computer Security Foundations Workshop, Cambridge, England, 2000, 35～52
2Schneier B.. Applied Cryptography(2nd Edition). New York: John Wileysons, 1996
3Rubin A.D.. Nonmonotonic cryptographic protocols[Ph.D. dissertation]. University of Michigan, Ann Arbor, 1994
4Halpern J.Y., Fagin R.. Modelling knowledge and action in distributed systems. Distributed Computing,1989,3(4):159～179
5Woo T.Y.C., Lam S.S.. A semantic model for authentication protocols. In: Proceedings of the IEEE Symposium on Research in Security and Privacy, Oakland, CA, 1993, 178～194
6Marrero W., Clarke E., Jha S.. Verifying security protocols with Brutus. ACM Transactions on Software Engineering and Methodology, 2000, 9(4): 443～487
7Stoller S.D.. A bound on attacks on payment protocols. In: Proceedings of the 16th Annual IEEE Symposium on Logic in Computer Science(LICS), Boston, Massachusetts, 2001, 61～70
8Paulson L.. The inductive approach to verifying cryptographic protocols. Journal of Computer Security, 1998,6(1): 85～128
9Hopper N.J., Seshia S.A., Wing J.M.. Combining theory generation and model checking for security protocol analysis. Technical Report: CMU-CS-00-107, 2000
10Kindred D.. Theory generation for security protocols[Ph.D. dissertation]. Carnegie Mellon University, 1999

共引文献22

1张龙波.计算机网络系统的安全防范[J].科技资讯,2008,6(6). 被引量：8
2赵宇,袁霖,王亚弟,韩继红.一种改进的Woo-Lam密码协议模型[J].计算机应用,2006,26(9):2116-2120. 被引量：1
3张帆,马建峰,文相在.通用可组合的匿名HASH认证模型[J].中国科学（E辑）,2007,37(2):272-284. 被引量：5
4赵宇,王亚弟,韩继红,范钰丹,赵琦.一种基于问题求解理论的密码协议形式模型[J].计算机应用,2007,27(2):303-307.
5张畅,王亚弟,韩继红,郭渊博.一种改进的密码协议形式化模型[J].软件学报,2007,18(7):1746-1755. 被引量：3
6郭宇燕.安全协议的形式化分析方法初探[J].内江科技,2007,28(11):136-136.
7张子木.试析计算机网络系统安全[J].科技创新导报,2008,5(22):35-35.
8韩继红,范钰丹,王亚弟,郭渊博.一种基于语义的安全协议形式化模型[J].计算机科学,2009,36(2):114-118. 被引量：2
9陈晨,朱文也,陈卫红,刘楠.一种对MSR模型的新扩展[J].计算机工程,2010,36(8):138-140. 被引量：1
10韩明奎,潘进,刘琼,李波.基于扩展Spi演算的IKEv2协议形式化分析与改进[J].计算机技术与发展,2010,20(8):154-158.

同被引文献47

1冯涛,马建峰.基于证人不可区分的通用可复合安全并行可否认认证[J].软件学报,2007,18(11):2871-2881. 被引量：5
2Trusted Computing Group.TNC Architecture for Interoperability.Specification Version 1.4,Revision 4. . 2009
3Datta A,Franklin J,Garg D,et al.A logic of secure systems and its application to trusted computing. IEEE Symp Secur Priv (S&P) . 2009
4Canetti R.Universally composable security:A new paradigm for cryptographic protocols. http://eprint.iacr.org/2000/067 . 2005
5Trusted Computing Group.Subject key attestation evidence extension.Specification version 1,revision 7. . 2005
6Trusted Computing Group.TNC IF-T:Protocol Bindings for Tunneled EAP Methods.Specification version 1.1, revision 10. . 2007
7Trusted Computing Group.TNC IF-T:Binding to TLS Specification.Version 1.0,revision 16. . 2009
8Trusted Computing Group.TPM Specifications v1.2. . 2006
9Institute for Electrical and Electronics Engineers (IEEE).IEEE802,Port-Based Network Access Control. IEEE Std 802.1X-2004 . 2004
10Canetti R.Universally composable signatures,certification,and authenticated communication. Proceedings of 17th Computer Security Foundations Workshop . 2004

引证文献9

1张俊伟,马建峰,文相在.通用可组合的可信网络连接模型和IF-T中的EAP-TNC协议[J].中国科学：信息科学,2010,40(2):200-215. 被引量：2
2张俊伟,马建峰,文相在.通用可组合的一次签名和广播认证[J].中国科学：信息科学,2010,40(2):272-284. 被引量：1
3冯涛,李凤华,马建峰,文相在.UC安全的并行可否认认证新方法[J].中国科学（E辑）,2008,38(8):1220-1233. 被引量：4
4ZHANG JunWei,MA JianFeng,MOON SangJae.Universally composable secure TNC model and EAP-TNC protocol in IF-T[J].Science China(Information Sciences),2010,53(3):465-482. 被引量：12
5ZHANG JunWei,MA JianFeng,MOON SangJae.Universally composable one-time signature and broadcast authentication[J].Science China(Information Sciences),2010,53(3):567-580. 被引量：13
6陈少晖,毛明,张艳硕,周章雄.通用可组合数字签名框架体系[J].计算机工程与应用,2010,46(17):128-132.
7邓淼磊,侯迎春,勒孚龙.对移动卫星通信系统密钥交换协议的改进[J].四川大学学报（工程科学版）,2010,42(4):121-124.
8田有亮,马建峰,彭长根,姬文江.群组通信的通用可组合机制[J].计算机学报,2012,35(4):645-653. 被引量：6
9田有亮,彭长根,马建峰,林辉,杨凯.通用可组合公平安全多方计算协议[J].通信学报,2014,35(2):54-62. 被引量：11

二级引证文献36

1黄建华,江亚慧,李忠诚.利用区块链构建公平的安全多方计算[J].计算机应用研究,2020,37(1):225-230. 被引量：15
2曹峥,邓淼磊.通用可组合的RFID搜索协议[J].华中科技大学学报（自然科学版）,2011,39(4):56-59. 被引量：8
3张立廷,吴文玲,张蕾,王鹏.CBCR:采用循环移位的CBC MAC[J].中国科学：信息科学,2011,41(6):694-703. 被引量：1
4ZHANG LiTing,WU WenLing,ZHANG Lei,WANG Peng.CBCR:CBC MAC with rotating transformations[J].Science China(Information Sciences),2011,54(11):2247-2255.
5傅建庆,吴春明,吴吉义,平玲娣.基于二叉树的反向Hash链遍历[J].计算机研究与发展,2012,49(2):294-303. 被引量：3
6田有亮,马建峰,彭长根,姬文江.群组通信的通用可组合机制[J].计算机学报,2012,35(4):645-653. 被引量：6
7王良民,姜顺荣,郭渊博.物联网中移动Sensor节点漫游的组合安全认证协议[J].中国科学：信息科学,2012,42(7):815-830. 被引量：12
8赵秀凤.哈希证明系统及应用研究[J].计算机科学,2012,39(B06):18-23.
9DONG Wei,CHEN LiQian.Recent advances on trusted computing in China[J].Chinese Science Bulletin,2012,57(35):4529-4532. 被引量：5
10王浩,陈泽茂,李铮,黄碧翼.基于可信网络连接的多级涉密网安全接入方案[J].计算机科学,2012,39(12):65-69. 被引量：3

1周彦伟,吴振强,乔子芮.可信匿名认证协议的研究与设计[J].计算机工程,2011,37(5):143-145. 被引量：3
2刘宇靓,任伟.可证明UC安全的前后向不可追踪的RFID双向认证协议[J].信息网络安全,2012(11):78-81.
3邓淼磊,王玉磊,邱罡,周利华.无需后端数据库的RFID认证协议[J].北京邮电大学学报,2009,32(4):59-62. 被引量：7
4张帆,孙璇,马建峰,曹春杰,朱建明.供应链环境下通用可组合安全的RFID通信协议[J].计算机学报,2008,31(10):1754-1767. 被引量：30
5隗云,熊国华,张兴凯,鲍皖苏.环签名的通用可组合安全模型及其应用研究[J].小型微型计算机系统,2012,33(1):38-41. 被引量：2
6杨超,曹春杰,王巍,马建峰.一种新的Mesh网络漫游接入协议[J].吉林大学学报（工学版）,2008,38(2):423-428. 被引量：1
7洪璇,陈克非,龙宇.Universally Composable Proactive Threshold RSA Signature[J].Journal of Shanghai Jiaotong university(Science),2008,13(6):659-663.
8周彦伟,吴振强.TA-ONS——新型的物联网查询机制[J].计算机应用,2010,30(8):2202-2206. 被引量：4
9ZHANG JunWei,MA JianFeng,YANG Chao,YANG Li.Universally composable secure positioning in the bounded retrieval model[J].Science China(Information Sciences),2015,58(11):71-85. 被引量：5
10彭清泉,裴庆祺,杨超,马建峰.通用可组合安全的Internet密钥交换协议[J].西安电子科技大学学报,2009,36(4):714-720. 被引量：3

Science in China(Series F)

2007年第3期

浏览历史

内容加载中请稍等...