论文部分内容阅读
目前,文献中提出的基于口令认证的密钥交换协议,很多都是针对两方的情形设计的,即通信双方为客户与服务器,它们通过一个预先共享的口令来进行认证的密钥交换.随着现代通信环境的快速变化,需要能为任意客户间构建一个端到端的安全信道,这种应用的情形与那些文献中所考虑的有很大区别.针对这种情形,文中提出了一个可证前向安全的基于口令认证的三方密钥交换协议,使通信双方在认证服务器的帮助下能相互进行认证并建立一个会话密钥.与前人提出的基于口令认证的三方密钥交换协议相比,该协议在计算代价和通信代价上都较有效,因而更适用于资源受限的环境.此协议的安全性是在口令型的选择基Gap Diffie-Hellman问题难解的假设前提下在随机谕示模型下证明的.
At present, most of the key exchange protocols based on password authentication proposed in the literature are designed for both parties, that is, the client and the server communicate with each other through a pre-shared password for key exchange. With the rapid changes of modern communication environment, it is necessary to construct an end-to-end secure channel for any customer, and the situation of this kind of application is greatly different from those considered in the literature. In view of this situation, Forward-secure password-based authentication of the three-party key exchange protocol, so that both communication parties with the help of the authentication server can mutually authenticate and establish a session key.Compared with the previous three-party password-based authentication key exchange protocol , Which is more efficient in terms of both computational cost and communication cost and is therefore more suitable for resource-constrained environments.The security of this protocol is based on the assumption that the password-based Gap Diffie-Hellman problem is not easily solved Demonstrated under the model.