【摘要】：隨著計算機技術的快速發(fā)展,互聯網時代的興起,如何在開放網絡中保證信息安全已經成為一個研究領域,該領域的核心技術是密碼學。密鑰協商協議是參與者在一個不確定安全的網絡中,以信息交互的方式來共同產生一個保密的會話密鑰,隨后用對稱加密機制來保障通信數據的安全,是密碼學中許多的高級協議的構成基礎。安全的密鑰協商協議的設計重點一般是從兩個方面進行考慮:分別是安全性和協議的有效性。從安全性上來講,密鑰協商協議應該要滿足的基本性質:已知會話密鑰安全、密鑰不可控制性、抵抗密鑰泄露攻擊、完美前向保密性、密鑰共享可知性。而從有效性上來講,則應該考慮的是用戶的通信輪數與計算量的大小。根據參與的人數,密鑰協商協議一般分為雙方、三方和多方密鑰協商協議。而本文主要是對多方密鑰協商協議進行的研究。本文的研究成果如下:1、介紹了現有的多方密鑰協商協議,分析了其進行一次協議所需要的通信復雜度和計算復雜度,并分析了其是否適應成員的動態(tài)變化。2、提出了一種新的基于橢圓曲線的多方密鑰協商協議方案,新的方案是PKI認證方式,使用安全單向函數而不使用雙線性對映射去構造,并且對新的協議在安全性和效率方面進行了分析。3、最后結合區(qū)塊鏈技術,提出一種新的基于區(qū)塊鏈技術的多方密鑰協商協議方案。協議引入區(qū)塊鏈存儲,對第三方可信中心的依賴降低,第三方可信中心只是公私鑰的分發(fā),防止中心作惡,使得協議過程更加安全,透明。
[Abstract]:With the rapid development of computer technology and the rise of the Internet era, how to ensure information security in open networks has become a research field, and cryptography is the core technology in this field. The key agreement protocol is that the participants together generate a confidential session key in an uncertain and secure network by means of information exchange, and then use the symmetric encryption mechanism to ensure the security of the communication data. It is the basis of many advanced protocols in cryptography. The design of secure key agreement protocol generally focuses on two aspects: security and protocol effectiveness. In terms of security, the key agreement protocol should satisfy the basic properties: known session key security, key uncontrollability, resistance to key disclosure attacks, perfect forward confidentiality, key sharing knowability. In terms of effectiveness, the number of communication wheels and the amount of computation should be considered. According to the number of participants, the key agreement is generally divided into two parties, tripartite and multi-party key agreement protocol. In this paper, the research of multi-party key agreement protocol is mainly carried out. The research results of this paper are as follows: 1, the existing multi-party key agreement protocols are introduced, the communication complexity and computational complexity required for the primary protocol are analyzed, and whether it adapts to the dynamic changes of members is analyzed. In this paper, a new multi-party key agreement protocol scheme based on Elliptic Curve is proposed. The new scheme is PKI authentication, which uses secure one-way function instead of bilinear pair mapping. The security and efficiency of the new protocol are analyzed. 3. Finally, a new multi-party key agreement protocol scheme based on block chain technology is proposed. The protocol introduces block chain storage and reduces the dependence on the third party trusted center. The third party trusted center is only the distribution of the public and private key to prevent the center from doing evil and make the protocol process more secure and transparent.
【學位授予單位】：廣州大學
【學位級別】：碩士
【學位授予年份】：2017
【分類號】：TN918.4

【參考文獻】

相關期刊論文 前7條

1 高隆;唐春明;張永強;;基于橢圓曲線的多方密鑰協商協議[J];網絡與信息安全學報;2016年05期

2 袁勇;王飛躍;;區(qū)塊鏈技術發(fā)展現狀與展望[J];自動化學報;2016年04期

3 謝環(huán);左黎明;湯鵬志;;一種基于橢圓曲線的多方密鑰交換協議[J];信陽師范學院學報(自然科學版);2011年04期

4 李國民;何大可;;認證群密鑰協商協議編譯器的分析與改進[J];計算機工程;2009年07期

5 趙婷;王曉峰;王尚平;武曉峰;郭虎;;基于身份的可認證多方密鑰協商方案[J];計算機工程;2008年06期

6 劉培;藤玲瑩;佘X;周明天;;橢圓曲線密碼體制的安全性分析[J];計算機工程與設計;2006年16期

7 吳開貴;吳中福;;一種安全橢圓曲線的有效構造方法[J];計算機科學;2006年04期

，

本文編號：2486496