Research And Application On Anonymous Authenticated Encryption Technology

Secure transport protocols provide the basic security guarantee for data communication by securing communications between any two network nodes.However,threats of data security in the network environments pose serious challenges for the secure transport protocols,since adversaries can derive more private information through participants’ identities.Thus,identity concealment becomes an important measure when designing secure transport protocols.Anonymous authenticated encryption(AAE),which enables communication entities to authenticate each other and ensures the confidentiality of communication data,and achieves identity concealment and forward identity security,is an important part of secure transport protocols.However,the theoretical and implemental works of AAE are not mature.In terms of cryptography,most AAE schemes are based on certificates,which is cumbersome because of the certificate management problem.In terms of protocol executing,most AAE schemes needs bilinear paring operations,which is consider to be inefficient.In terms of functions,there are few certificateless AAE schemes or AAE schemes under multi-center,which cannot satisfy the requirements of communication between different centers.In terms of applications,few AAE schemes have been applied in wireless body area networks.To solve the above problems,this dissertation investigates AAE,and the main contributions of this dissertation can be summarized as follows:1.Research on technology and application of identity-based AAE without pairing.(1)This dissertation proposes an identity-based key generation method through implicit certificate technology,and based on it,constructs an identity-based AAE scheme.This scheme eliminates the need for bilinear pairings,which reduces the computation overhead.This scheme achieves identity concealment,forward identity security,randomness security,and the functions of authenticated encryption.(2)This dissertation combines the proposed scheme with key agreement technology,constructs an anonymous authentication scheme for wireless body area networks,and proves the security of this scheme under the random oracle model.Comparison with previous schemes shows this scheme achieves more security properties and is efficient.2.Research on technology of certificateless AAE.We construct an AAE scheme based on certificateless cryptosystem.Our scheme eliminates the need for certificates and key escrow,and achieves identity concealment,forward identity security,and randomness security(that is,if Diffie-Hellman exponents in the running of a scheme are exposed,the confidentiality of transmitted data still preserves).Adversarial model has been proposed,and the security of this scheme has been proved under the random oracle model.Furthermore,we construct a certificateless anonymous authenticated key agreement scheme based on our AAE scheme.Besides functions of the AAE,this scheme also establishes a secure session key.3.Research on technology and application of certificateless AAE without pairing.(1)This dissertation proposes a certificateless key generation method based on implicit certificate technology,and based on it,constructs a certificateless AAE scheme.This scheme eliminates the need for bilinear pairing operations,which reduces computation overheads.This scheme achieves identity concealment,forward identity security,and randomness security.(2)This dissertation combines the proposed scheme with anonymous authentication technology,constructs an anonymous authentication scheme for wireless body area networks,and proves the security of this scheme under the random oracle model.Comprehensive comparisons between this scheme and previous schemes show that this scheme achieves forward identity security and forward security of the receiver while previous schemes don’t,and needs less storage,communication,and computation costs.4.Research on technology of certificateless AAE under multi-center.This dissertation constructs an AAE scheme under multi-center based on certificateless cryptosystem.This scheme enables two clients,who registered with different trusted centers,to communicate with each other,and achieves confidentiality,authentication,and anonymity.Our scheme is secure against two types of adversaries,namely an adversary who can replace a client’s public key and an adversary who can access the trusted center’s master key,which has been proved under the random oracle model.Moreover,we construct a certificateless anonymous authenticated key agreement scheme under multi-center based on the proposed scheme.Besides functions of our AAE scheme,this scheme establishes a secure session key.