摘要
针对密钥协商中的安全性问题,结合混沌映射良好的密码特性,提出了一种动态身份认证双方密钥协商协议.协议中,用户每次进行密钥协商的身份是动态身份,在实现用户匿名性的同时,能抵抗冒充攻击和重放攻击;密钥协商中没有使用加/解密算法和时钟同步,降低了协议执行时计算的复杂度,提高了运行效率;安全性基于哈希函数h()的单向性及扩展切比雪夫多项式离散对数问题和Diffie-Hellman问题,从安全性分析可以看出,本协议能够抵御常见攻击,具有较高的安全性;从性能分析可以看出,该协议具有较低的传输和计算复杂度.适用于实际应用环境.
In order to solve the security problems in key negotiation,combining with the good cipher features of chaos mapping,this paper proposes a mutual key negotiation protocol for dynamic authentication.In the protocol,the user’s identity for each key negotiation is dynamic,which can resist impersonation attack and replay attack while realizing user anonymity.The addition/decryption algorithm and clock synchronization are not used in the key negotiation,which reduces the complexity of protocol execution and improves the operation efficiency.The security is based on the unipolarity of hash function h(),extended Chebyshev polynomial discrete logarithm problems,and Diffie-Hellman problem.It can be seen from the security analysis that this protocol can resist common attacks and has high security.It can be seen from the performance analysis that the protocol has lower transmission complexity and computational complexity.It is suitable for practical application environment.
作者
曹阳
李娜
潘继强
达列雄
CAO Yang;LI Na;PAN Ji-qiang;DA Lie-xiong(School of Mathematics and Computer Science,Shaanxi University of Technology,Hanzhong 723000,China)
出处
《数学的实践与认识》
2021年第14期185-193,共9页
Mathematics in Practice and Theory
基金
国家自然科学基金青年项目(11502132)
教育部资助项目(201801073017)
陕西省科技厅资助项目(2020KRM035)
陕西理工大学校级科研项目(SLG1915)。