计算机科学 ›› 2020, Vol. 47 ›› Issue (11): 60-67.doi: 10.11896/jsjkx.191100068
所属专题: 智能移动身份认证
江泽涛, 徐娟娟
JIANG Ze-tao, XU Juan-juan
摘要: 针对现有不同体系公钥基础设施(Public Key Infrastructure,PKI)和无证书公钥密码体系(CertificateLess public key Cryptography,CLC)的跨域身份认证方案不能满足身份盲化性以及高效的异构跨域认证问题,提出代理盲签名的高效异构跨域认证方案。该方案重新构造了一个高效、安全的跨域身份认证模型并结合代理签名和盲签名的优点,在云间引入一个可信认证中心CA给予第三方合法代理者可信的代理权限来执行代理盲签名操作。此代理者不仅减少了云间认证中心CA的通信负载,实现不同域授权代理盲签名用户和请求代理盲签用户之间的信息交互,还满足了双向实体身份同步认证的盲化性以及代理盲签名的可识别性,提高了认证安全性。分析结果表明,该方案基于数学困难性问题满足抗替换性攻击、抵抗重放攻击、抗中间人攻击和身份不可追踪性等性能,完成了异域用户之间高效、高安全性的跨域身份认证。
中图分类号:
[1] FENG D G,ZHANG M,ZHANG Y,et al.Study on Cloud Computing Security[J].Journal of Software,2011,22(1):71-83. [2] LIN J Q,JING J W,ZHANG Q L,et al.Recent advances in PKI technologies[J].Journal of Cryptologic Research,2015,2(6):487-496. [3] ZHANG F T,SUN Y X,ZHANG L,et al.Research on Certificateless Public Key Cryptography[J].Journal of Software,2011,22(6):1316-1332. [4] BINU S,MOHAMMED M,RAJ P.A Mobile Based Remote User Authentication Scheme without Verifier Table for Cloud Based Services[C]//Proceedings of the 3rd International Symposium on Women in Computing and Informatics.New York,USA:ACM Press,2015:502-509. [5] DONG Z,ZHANG L,LI J.Security Enhanced Anonymous Remote User Authentication and Key Agreement for Cloud Computing[C]//Proceedings of the 17th International Conference on Computational Science and Engineering.IEEE Computer Society Press,2014:1746-1751. [6] YANG X D,AN F I,YANG P,et al.Cross-domain Identity Authentication Scheme in Cloud Based on Certificateless Signature[J].Computer Engineering,2017,43(11):128-133,145. [7] YANG X D,AN F Y,YANG P,et al.Cross-Domain Authentication Scheme Based on Proxy Re-signature in Cloud Environment[J].Chinese Journal Of Computers,2017,42(4):82-97. [8] XIE Y R,MA W P,LUO W.New cross-domain authentication mode for information services entity[J].Computer Science,2018,45(9):177-182. [9] WANG Y,WANG Y L.A Heterogeneous Cross-Domain Au-thentication Model Based on Access Tickets in Virtual Cable Television Network[J].Applied Mechanics and Materials,2015,742:717-720. [10] MA X T,MA W P,LIU X X.A Cross Domain Authentication Scheme Based on Blockchain Technology[J].Acta Electronica Sinica,2018,46(11):13-21. [11] HE D,ZEADALLY S,KUMAR N,et al.Anonymous Authentication for Wireless Body Area Networks With Provable Security[J].IEEE Systems Journal,2016,11(4):2590-2601. [12] ZHOU Z C,LI L X,LI Z H.Efficient cross-domain authentication scheme based on blockchain technology[J].Journal of Computer Applications,2018,38(2):316-320,326. [13] SHI Y H,LI W S.A Survey of Blind Signature Studies[J].Computer Engineering & Science,2005,27(7):83-85. [14] YANG X D,CHEN C L,YANG P,et al.Partially blind proxyre-signature scheme with proven security[J].Journal on Communications,2018,39(2):65-72. [15] ZHAI Z Y,GAO D Z,LIANG X Q,et al.Certificate-based proxyblind signature scheme[J].Computer Engineering and Applications,2014,50(4):57-62. [16] WANG C F,XU Q B,LIU C,et al.Partial Blind Signcryption Scheme in CLPKC-to-TPKI Heterogeneous Environment[J].Journal of Electronics & Information Technology,2019,41(8):77-85. [17] NI L,CHEN G,LI J,et al.Strongly secure identity-based authenticated key agreement protocols without bilinear pairings[J].Information Sciences,2016,37(2):205-217. [18] GE R L,GAO D Z,LIANG J L,et al.Security analysis and improvement of certificateless proxy blind signature[J].Journal of Computer Applications,2012,32(3):705-706,714. [19] WANG Z H,HAN Z,LIU J Q,et al.ID authentication scheme based on PTPM and certificateless public key cryptography in cloud environment[J].Journal of Software,2016,27(6):1523-1537. [20] LIU S,ZHU S H.Identity Authentication Scheme in Multi-ser-ver Environment[J].Computer Engineering,2015,41(3):120-124. [21] YUAN C,ZHANG W,WANG X,et al.Heterogeneous Cross-Domain Authenticated Key Agreement Protocols in the EIM System[J].Arabian Journal for Science & Engineering,2017,42(8):3275-3287. |
[1] | 姜昊堃, 董学东, 张成. 改进的具有前向安全性的无证书代理盲签名方案 Improved Certificateless Proxy Blind Signature Scheme with Forward Security 计算机科学, 2021, 48(6A): 529-532. https://doi.org/10.11896/jsjkx.200700049 |
[2] | 王兴威, 侯书会. 一种改进的高效的代理盲签名方案 Improved Efficient Proxy Blind Signature Scheme 计算机科学, 2019, 46(6A): 358-361. |
[3] | 刘二根,王霞,周华静,郭红丽. 改进的无证书代理盲签名方案 Improved Certificateless Proxy Blind Signature Scheme 计算机科学, 2016, 43(8): 92-94. https://doi.org/10.11896/j.issn.1002-137X.2016.08.019 |
[4] | 李波 邱小平. 基于混合离散对数的盲签名认证研究 计算机科学, 2004, 31(7): 80-83. |
|