计算机工程与应用 ›› 2014, Vol. 50 ›› Issue (6): 68-71.

• 网络、通信、安全 • 上一篇    下一篇

抗内部人攻击的安全组密钥分发协议

李亚军,刘忆宁,林丹珠   

  1. 桂林电子科技大学 数学与计算科学学院,广西 桂林 541004
  • 出版日期:2014-03-15 发布日期:2015-05-12

Secure group key transfer protocol against insider attack

LI Yajun, LIU Yining, LIN Danzhu   

  1. School of Mathematics and Computational Science, Guilin University of Electronic Technology, Guilin, Guangxi 541004, China
  • Online:2014-03-15 Published:2015-05-12

PDF

摘要: 为了保障群组通信过程中的内容安全与成员的身份认证,需要一次性会话密钥对通信内容进行加密,密钥建立协议的主要任务是在群组通信开始前完成会话密钥的产生与分发,分为密钥协商协议与密钥传输协议。详细分析了Harn组密钥分发协议与Nam组密钥分发协议的安全漏洞,在Harn协议与Nam协议中,群组通信的成员可以获取其他成员的长期秘密数据,即协议无法抵抗内部人攻击。基于秘密共享理论,设计了安全的组密钥分发协议,能够有效抵抗内部人攻击与外部人攻击。

关键词: 组密钥分发协议, 会话密钥, 秘密共享, 内部人攻击

Abstract: Group key establishment protocol is used to establish a one-time session key among all participating entities, which ensures the message only recognizable for authorized member. Harn and Lin propose a group key transfer protocol based on Shamir’s secret sharing, which is then improved by Nam, et al. to resist the replay attack from inside adversary. In fact, both Harn and Nam are vulnerable against the insider attack unlike their claim. A modification of authenticated secure group key transfer protocol is proposed to achieve the insider attack-resistance and outsider attack-resistance.

Key words: group key transfer protocol, session key, secret sharing, insider attack

京ICP备13024262号-1
Copyright © 《计算机工程与应用》编辑部
技术支持:北京玛格泰克科技发展有限公司
总访问量
今日访问
在线人数