• 研究论文 • 上一篇    下一篇



  1. (1. 西安电子科技大学 通信工程学院, 陕西 西安 710071;
    2. 解放军洛阳外国语学院 数学教研室, 河南 洛阳 471003)

  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2004-08-20 发布日期:2004-08-20

Private key distribution scheme of ID-based encryption

LI Xin-guo1,2;GE Jian-hua1;ZHAO Chun-ming1


  1. (1. School of Telecommunication Engineering, Xidian Univ., Xi'an 710071, China;
    2. Dept. of Mathematics, PLA Foreign Language Institute, Luoyang 471003, China)
  • Received:1900-01-01 Revised:1900-01-01 Online:2004-08-20 Published:2004-08-20

摘要: 为了解决基于身份的加密方案(IBE)中的用户身份认证和私钥分发问题,使用公钥证书的概念,提出了一种新的身份认证和私钥分发方案.该方案使用一个可信第三方实现信任转移,增添一个用户公钥用于建立私钥传输的安全信道.新方案不仅大大减少了认证的次数,而且解决了原方案及相关应用都不曾处理的用户私钥安全分发问题.基于IBE,文中还提出了一种加密方案,该方案有一个公钥和两个私钥,两个私钥都可用于解密,其中一个托管到可信第三方,另一个用作不可拒认数字签名.

关键词: IBE, 身份认证, 密钥分发

Abstract: To solve the problems of authenticating the user's identity and distributing the user's private keys in the identity-based encryption(IBE) system, a new scheme for both identity authentication and private key distribution is proposed as a reinforcement for IBE by smartly using the concept of public-key certificate. A trusted third party is employed to transfer trust, and an additional public key is used to set up the secure channel for transmitting the private key. Not only is the number of authentications needed decreased significantly, but the private key distribution problem which has never been dealt with in the original scheme and relating applications is addressed in the new scheme. Based on IBE, we also propose an encryption scheme which has one public key with two corresponding private keys. Both of the private keys can be used for decryption, one of which is escrowed to a trusted third party, the other for non-repudiation signature.

Key words: identity-based encryption, identity authentication, key distribution


  • TN918.2