东南大学学报(自然科学版)2012,Vol.42Issue(4):604-608,5.DOI:10.3969/j.issn.1001-0505.2012.04.005
M2M网络上的改进直接匿名认证方案
Improved direct anonymous attestation scheme in M2M network system
摘要
Abstract
Current anonymous attestation protocols (DAA) used in trusted computing platform always accompany with complicated computing. To solve this problem, the I-DAA protocol is proposed based on the mechanisms of existing DAA protocols and the characteristics of M2M network. Based on the theory of elliptic curve and the difficult problem of discrete logarithm, I-DAA also uses the zero knowledge proof and bilinear pairing theories. At the certification application stage, the public system parameters instead of those computed by TPM are used as certificated parameters to reduce the computational complexity of TPM whose computing ability is relatively more valuable. TPM selects the secret information by itself, which also reduces the computation cost of TPM. Moreover , it only needs to apply one time of DAA certification for TPM to use forever in the latter verification processing. This avoids the bottleneck of traditional DAA protocols. The analysis results show that the I-DAA scheme not only remains the security level of the traditional DAA protocols but also has great reduction of computational complexity, which makes it more suitable for M2M systems and other embedded application systems.关键词
M2M/可信计算平台/直接匿名认证/双线性对Key words
M2M( machine to machine) / TPM (trusted platform module)/ DAA (direct anonymous attestation)/ bilinear pairing分类
信息技术与安全科学引用本文复制引用
陈立全,何营营,王玲玲..M2M网络上的改进直接匿名认证方案[J].东南大学学报(自然科学版),2012,42(4):604-608,5.基金项目
国家自然科学基金资助项目(60902008)、信息网络安全公安部重点实验室开放课题资助项目(2010011). (60902008)
