您的位置:山东大学 -> 科技期刊社 -> 《山东大学学报(理学版)》

山东大学学报(理学版) ›› 2016, Vol. 51 ›› Issue (9): 53-58.doi: 10.6040/j.issn.1671-9352.2.2015.180

• • 上一篇    下一篇

多组件属性的远程证明

李晓策1,2,潘晓中1,2*,麦涛涛1,2   

  1. 1.网络与信息安全武警部队重点实验室, 陕西 西安 710086;2. 武警工程大学电子技术系, 陕西 西安 710086
  • 收稿日期:2015-09-21 出版日期:2016-09-20 发布日期:2016-09-23
  • 通讯作者: 潘晓中(1964— ),男,教授,研究方向为网络安全、密码学.E-mail: xzpan@yeah.net E-mail:wjlixiaoce@163.com
  • 作者简介:李晓策(1991— ),男,硕士研究生,研究方向为信息安全、可信计算.E-mail: wjlixiaoce@163.com
  • 基金资助:
    国家自然科学基金资助项目(61202492)

Multi-component property based remote attestation

LI Xiao-ce1,2, PAN Xiao-zhong1,2*, MAI Tao-tao1,2   

  1. 1. Key Laboratory of Network and Information Security of the PAP, Xian 710086, Shaanxi, China;
    2. Department of Electronic Technology, Engineering University of the PAP, Xi an 710086, Shaanxi, China
  • Received:2015-09-21 Online:2016-09-20 Published:2016-09-23

PDF (PC)

841

摘要: 在现有组件属性证明方案的基础上,提出了多组件属性的证明方案,以解决多个组件以一定的结构构成的安全属性的证明问题,满足不同类型属性的证明需求。以CL签名为基础进行多个组件与属性的签名,使组件-属性的映射具有多对一的关系,并对各组件的组成结构进行了简要分析。多组件属性的证明方案具有组件验证效率高,协议配置灵活,可兼容单组件的属性证明等特点,证明平台的隐私可以得到保证。多组件属性证明方案适用于具有特定组件结构的属性证明。

关键词: 可信计算, 基于属性的证明, 组件属性证明, 远程证明

Abstract: On the basis of component property-based attestation, multi-component property based attestation(MCPBA)is proposed to solve the attestation problem with the security property consists of some components in a special structure. This scheme can satisfy the attestation requirements of different kind of properties. A several-for-one mapping between components and property is established based on blocks of messages signature in Camenisch and Lysyanskaya signature scheme. MCPBA has an efficient component property attestation method, which is suitable for both multi and single component-property. The component property based attestation that proved secure in RO model under strong RSA assumption is the secure base of MCPBA, to make certain of privacy protection. MCPBA is suitable for the property attestation that has a special components structure.

Key words: remote attestation, component property attestation, trusted computing, property-base attestation

中图分类号: 

  • TP309
[1] BRICKELL E, CAMENISCH J, CHEN Liqun. Direct anonymous attestation[C] //Proceedings of the 11th ACM Conference on Computer and Communications Security. New York: ACM, 2004:132-145.
[2] 张倩颖, 冯登国, 赵世军. 基于可信芯片的平台身份证明方案研究[J]. 软件学报, 2014, 35(8):95-106. ZHANG Qianying, FENG Dengguo, ZHAO Shijun. Research on platform identity authentication scheme based on trusted chip[J]. Journal of Software, 2014, 35(8):95-106.
[3] CHEN Liqun, LANDFERMANN R, LÖHR H, et al. A protocol for property-based attestation [C] //Proceedings of the 1st ACM Workshop on Scalable Trusted Computing. NewYork: ACM, 2006:88-102.
[4] 李尚杰,贺也平,刘冬梅,等. 基于属性的远程证明的隐私性分析[J]. 通信学报,2009,11A:146-152. LI Shangjie, HE Yeping, LIU Dongmei, et al. Privacy analysis of remote attestation based on attribute[J]. Journal of Communication, 2009, 11A:146-152.
[5] 徐晓燕,赵荣彩,闫丽景. 软件度量的研究与进展[J]. 信息工程大学学报,2014,15(5):622-627. XU Xiaoyan, ZHAO Rongcai, YAN Lijing. Research and development of software metrics[J]. Journal of Information Engineering University, 2014, 15(5):622-627.
[6] 秦宇,冯登国.基于组件属性的远程证明[J]. 软件学报, 2009, 20(6): 1625-1641. QIN Yu, FENG Dengguo. Remote attestation based on component attributes[J]. Journal of Software, 2009, 20(6):1625-1641.
[7] PORITZ J, SCHUNTER M, HERREWEGHEN E V, et al. Property attestation-scalable and privacy-friendly security assessment of peer computers[J]. Biotechniques, 2004, 27(3):223-238.
[8] CAMENISCH J, LYSYANSKAYA A. A signature scheme with efficient protocols[C] //Proceedings of 3rd Conference on Security in Communication Networks. Berlin: Springer-Verlag, 2002, 2576:268-289.
[9] CAMENISCH J, GROTH J. Group signatures: better efficiency and new theoretical aspects[J]. Lecture Notes in Computer Science, 2010, 3352:120-133.
[1] 张建标,李志刚,刘国杰,王超,王玮. 面向Windows环境进程主动动态度量方法[J]. 山东大学学报(理学版), 2018, 53(7): 46-50.
[2] 孙亮,陈小春,钟阳,林志鹏,任彤. 基于可信BMC的服务器安全启动机制[J]. 山东大学学报(理学版), 2018, 53(1): 89-94.
[3] 纪祥敏, 苏航, 向騻, 周术诚. 基于信誉权值策略的多重第三方远程证明机制[J]. 山东大学学报(理学版), 2015, 50(11): 47-51.
Viewed
Full text


Abstract

Cited
  Shared   
  Discussed   
No Suggested Reading articles found!
版权所有 © 2018 《山东大学学报(理学版)》编辑部 
地址: 山东省济南市山大南路27号山东大学中心校区(250100) 电话: +86-0531-88366917 E-mail: xblxb@sdu.edu.cn
本系统由北京玛格泰克科技发展有限公司设计开发