通信学报2018,Vol.39Issue(12):113-133,21.DOI:10.11959/j.issn.1000-436x.2018279
基于直接匿名证明的k次属性认证方案
k-times attribute-based authentication scheme using direct anonymous attestation
摘要
Abstract
At present, the main drawbacks of existing k-times attribute-based authentication (abbreviated to k-TABA) schemes and related attribute-based authentication schemes are that the computation cost of the authentication process depends on the size of the access formula and none of these schemes considers the problems of member revocation and attribute update. A new k-TABA scheme was constructed based on the building blocks of direct anonymous attestation, set membership proof and ciphertext-policy attribute-based encryption. Moreover, in order to reduce user's calculation as much as possible, the underlying attribute-based encryption scheme was modified, and then the main decryption operations were outsourced by using the key binding technique of Green et al. The new scheme can be deployed on a trusted platform and support expressive authentication policies. In addition, it also satisfies several ideal properties, such as registration process verifiability, member revocation, attribute update, and so on. The significant performance advantage of the new scheme is that the computation overhead of the user in the authentication phase is constant.关键词
属性认证/直接匿名证明/密文策略属性加密/线性秘密分享/外包解密Key words
attribute-based authentication/ direct anonymous attestation/ ciphertext-policy attribute-based encryption/ linear secret sharing/ outsourced decryption分类
信息技术与安全科学引用本文复制引用
柳欣,徐秋亮,张斌,张波..基于直接匿名证明的k次属性认证方案[J].通信学报,2018,39(12):113-133,21.基金项目
国家自然科学基金资助项目(No.61173139) (No.61173139)
山东省自然科学基金资助项目(No.ZR2015FL023,No.ZR2014FL011,No.ZR2015FL022) (No.ZR2015FL023,No.ZR2014FL011,No.ZR2015FL022)
山东省高等学校科学技术计划基金资助项目(No.J17KA081,No.J15LN16,No.J13LN23) (No.J17KA081,No.J15LN16,No.J13LN23)
山东青年政治学院博士科研启动经费资助项目(No.14A007) (No.14A007)