北京大学学报(自然科学版)

基于细粒度新鲜性的密码协议分析

程正杰,陈克非,来学嘉   

  1. 上海交通大学计算机科学与工程系, 上海 200240;
  • 收稿日期:2010-05-15 出版日期:2010-09-20 发布日期:2010-09-20

Security Analysis of Cryptographic Protocols Based on Fine-Grained Freshness

CHENG Zhengjie, CHEN Kefei, LAI Xuejia   

  1. Department of Computer Science and Engineering, Shanghai Jiaotong University, Shanghai 200240;
  • Received:2010-05-15 Online:2010-09-20 Published:2010-09-20

摘要: 对新鲜性进行了细粒度的定义, 并将新鲜性和秘密性结合, 完善了基于新鲜性原则的密码协议分析方法。区分了不同主体产生的新鲜性标识符的可信任新鲜性, 并对私有秘密和共享秘密给予了更准确的解释。改进后的基于新鲜性原则的密码协议分析方法能够分析并发现 Helsinki 协议中存在的微妙的安全缺陷。

关键词: 密码协议, 新鲜性, 秘密性

Abstract: Fine-grained definitions of freshness are presented, and both freshness and secrecy are combined to improve the security analysis of cryptographic protocols. Trusted freshness of the nonces generated by different principals are explicitly distinguished. More exact explanations on the private secrecy and shared secrecy are given. The improved method can analyze and find out some existing subtle weaknesses in the Helsinki protocol.

Key words: cryptographic protocol, freshness, secrecy

中图分类号: