通信学报2025,Vol.46Issue(5):65-76,12.DOI:10.11959/j.issn.1000-436x.2025088
基于国密算法SM9的撤销加密方案
Revocation encryption scheme based on domestic cryptographic algorithm SM9
谢振杰 1张万里 2张耀 3赵方方 2刘胜利2
作者信息
- 1. 信息工程大学网络空间安全教育部重点实验室,河南 郑州 450001||中国人民解放军78156部队,重庆 400039
- 2. 信息工程大学网络空间安全教育部重点实验室,河南 郑州 450001
- 3. 信息工程大学网络空间安全教育部重点实验室,河南 郑州 450001||中国人民解放军新疆昌吉军分区,新疆 昌吉 831100
- 折叠
摘要
Abstract
To address the limitations of lengthy system public keys and inefficient decryption in existing identity-based revocation encryption schemes,an optimized revocation encryption scheme was proposed based on SM9,China's inde-pendently developed identity-based cryptographic algorithm.During encryption,a revoked user list was specified,ensur-ing that only non-revoked users could decrypt correctly.The scheme achieved constant ciphertext length and compact system public keys.For the"one-time encryption,multiple decryption"scenario,decryption efficiency was prioritized through bilinear map restructuring.Under the random oracle model,the scheme was proven to achieve chosen-plaintext security based on the GDDHE assumption.Theoretical analysis and experimental tests demonstrated that,compared with existing schemes,the system public key length was reduced by approximately 66.7%at the cost of a 50%expansion in key-encapsulated ciphertext length.When revoking 4 to 64 users,the decryption efficiency was improved by 65.0%to 85.2%.These results indicate that the scheme effectively enhances the practicality of SM9-based cryptographic systems in large-scale access control scenarios.关键词
撤销加密/国密算法/SM9算法/广播加密/基于标识的密码Key words
revocation encryption/domestic cryptographic algorithm/SM9 algorithm/broadcast encryption/identity-based cryptography分类
计算机与自动化引用本文复制引用
谢振杰,张万里,张耀,赵方方,刘胜利..基于国密算法SM9的撤销加密方案[J].通信学报,2025,46(5):65-76,12.
