引用本文: |
-
刘宽,宁建廷,伍玮,陈海霞.支持批量审计的解密外包 Twin-SM9 密钥封装机制[J].信息安全学报,已采用 [点击复制]
- LIU Kuan,NING Jianting,WU Wei,CHEN Haixia.Multi-Ciphertext Batch Auditable Outsourced Twin-SM9 Key Encapsulation Mechanism[J].Journal of Cyber Security,Accept [点击复制]
|
|
摘要: |
自 SM9 标识密码相关算法先后被纳入 ISO/IEC 国际标准以来,为推动密码技术实现安全先进、自主可控,一系列关于
SM9 标识密码算法的功能性拓展和安全性(拓展)证明被提出. Cheng 依据 Gap-q-BCAA1 困难问题假设对 SM9 密钥封装、公
钥加密和密钥协商系列算法进行了安全性分析. 为有效消除 SM9 系列算法对 Gap 困难问题的依附,Lai 等人随后利用
Twin-Hash-ElGamal 技术构造出了 Twin-SM9 密钥封装机制. 然而,Twin-SM9 密钥封装机制的解密操作需要 2 次双线性配对运
算,在需要对海量数据进行频繁解密操作且算力资源受限的环境中(如无线传感设备、密码芯片等),计算代价高昂的配对运
算将会成为制约系统效率的重要瓶颈. 针对上述问题,本文基于 Twin-SM9 提出了支持多密文批量审计的解密外包新型密钥封
装机制 BAOC-Twin-SM9,并在随机谕言模型下证明了 BAOC-Twin-SM9 具备 Replayable Chosen Ciphertext Attacks (RCCA)安全
性. BAOC-Twin-SM9 利用云服务中心的强大算力有效消除了双线性配对运算对原 Twin-SM9 密钥封装机制解密效率的影响,计
算资源有限的终端数据使用者最终只需进行两次简单的指数运算就能对外包计算结果解密. 相比于 Twin-SM9,其更适用于解
密操作频繁且算力资源受限的环境中. 另外, 针对半可信云服务中心解密外包计算结果的高效审计问题,BAOC-Twin-SM9 运用
随机盲化技术实现了多密文外包解密结果的批量审计功能,从而保证了外包计算结果的正确性. 理论分析和仿真实验数据论证
了 BAOC-Twin-SM9 的可行性与高效性. BAOC-Twin-SM9 拓展了 SM9 系列算法的应用领域. |
关键词: Twin-SM9 解密外包 批量审计 SM9 密钥封装 |
DOI: |
投稿时间:2022-03-14修订日期:2022-06-22 |
基金项目:基于我国商用密码的区块链安全保护研究;云环境下安全数据共享与访问控制机制研究;抗颠覆攻击和安全后门的密码技术研究;支持编辑的安全图像认证技术研究 |
|
Multi-Ciphertext Batch Auditable Outsourced Twin-SM9 Key Encapsulation Mechanism |
LIU Kuan1, NING Jianting1, WU Wei2, CHEN Haixia1
|
(1.Department of Computer and Cyber Security,Fujian Normal University;2.Department of Mathematics and Statistics, Fujian Normal University) |
Abstract: |
A series of functional extensions and security proofs (extensions) of identity-based cryptographic algorithms
have been proposed in order to promote the cryptographic techniques to achieve the goal of safety and advancement, in-
dependent control since identity-based cryptographic algorithm SM9 was incorporated into ISO/IEC international stand-
ards. Based on Gap-q-BCAA1 assumption, Cheng gave security analysis of SM9 key encapsulation and encryption algo-
rithm,key exchange protocol. Later, Lai et al. proposed Twin-SM9 key encapsulation mechanism to effectively eliminate
the dependence of SM9 series algorithm on Gap assumption with Twin-Hash-ElGamal. However, the decryption operation
of Twin-SM9 key encapsulation mechanism requires two bilinear pairing operations. In resource-constrained environment
where frequent decryptions of massive data are required (wireless sensing equipment、cryptographic chip etc), the expen-
sive pairing cost will become an important bottleneck which restricts the efficiency of the system. To solve the problem,
we propose a new key encapsulation mechanism named BAOC-Twin-SM9 based on Twin-SM9, with purpose of support-
ing multi-ciphertexts batch auditing and decryption outsourcing. The security of our BAOC-Twin-SM9 is secure against
Replayable Chosen Ciphertext Attacks (RCCA) under random oracle model. BAOC-Twin-SM9 eliminates the influence of
bilinear pairing operations on the decryption efficiency of the Twin-SM9 key encapsulation mechanism powerfully using
the frederic computing power of cloud service center, terminal data user with limited computing resources can finally de-
crypt the outsourced computing results with only two simple exponential operations. Compared to the Twin-SM9, it is
more suitable for resource-constrained environment when frequent decryption operations are required. To solve the issue
of efficient audit for decryption of outsourced computing results in semi-trusted cloud service center, BAOC-Twin-SM9
implements batch auditing for multi-ciphertexts outsourcing decryption by using random blinding technology, thus ensur-
ing the correctness of outsourcing computing results. Theoretical analysis and simulation data demonstrate the feasibility
and efficiency of our BAOC-Twin-SM9. Our BAOC-Twin-SM9 extends the application scope of SM9 series algorithms. |
Key words: Twin-SM9 outsourced decryption batch audit SM9 key encapsulation |