Your SlideShare is downloading. ×
A Survey of Identity-Based Encryption
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

A Survey of Identity-Based Encryption

1,485

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,485
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
52
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. IBE发展现状 关志 Guanzhi@infosec.pku.edu.cn 2007年7月24日 2007-7-24 Identity Based Encryption 1
  • 2. 四个基本的IBE体制 Boneh-Franklin IBE 2001  Cocks IBE 2001  Boneh-Boyen IBE 2004  Heng-Kurosawa IBE 2004  2007-7-24 Identity Based Encryption 2
  • 3. IBE的扩展 层次IBE  支持通配符的IBE  模糊IBE  …  2007-7-24 Identity Based Encryption 3
  • 4. IBE体制 IBE体制由四个部分构成  系统建立:生成公开系统参数和主密钥  私钥生成:由用户标识和主密钥导出用户私钥  加密:由用户标识加密  解密:由用户私钥解密  2007-7-24 Identity Based Encryption 4
  • 5. Pairing基本概念 Pairing(双线性映射)e: G1×G1 →G2,#G1=# G2 =p。  满足如下性质:  双线性(Bilinearity)  <aP, bQ> = <aP, Q>b=<P, bQ>a=<P, Q>ab  非退化(Non-degenerate)  对于任意P和Q,不全都映射到的单位元上  运算效率满足应用需求。  2007-7-24 Identity Based Encryption 5
  • 6. Pairing的进展 新的Pairing类型  Weil Pairing  Tate Pairing  Ate Pairing  新的适用于Pairing的椭圆曲线  超奇异椭圆曲线  MNT椭圆曲线  2007-7-24 Identity Based Encryption 6
  • 7. Pairing 密码基础 Pairing和离散对数问题的相似性  <aP, Q>b=<P, bQ>a =<P, Q>ab  (ga)b = (gb)a = gab  由Pairing构造的Diffie-Hellman密钥交换  P,Q为G1上的公开点,A (a, aP),B (b, bP)  A发送aP给B  B发送bP给A  A计算共享密钥<bP, Q>a =(<P, Q>b) a =<P, Q>ab  B计算共享密钥<aP, Q>b =(<P, Q>a) b =<P, Q>ab  2007-7-24 Identity Based Encryption 7
  • 8. Boneh-Franklin IBE 系统主密钥:整数s  公开的参数:椭圆曲线点sP,  接收方私钥:椭圆曲线点sQID  接收方公钥:QID=Map-to-point(ID)  加密:选择一个随机数 r∈Zq* ,明文 M 对  应的密文C={U,V}={rP, M⨁ 〈QID, sP〉r} 解密:M=V⨁〈sQID, rP〉  2007-7-24 Identity Based Encryption 8
  • 9. 密钥长度对比 Bits of Pairing ECC (CPK) RSA Security (BF-IBE) 80 160 512 1024 112 224 1024 2048 128 256 1536 3072 192 384 3840 7680 256 512 7680 15360 2007-7-24 Identity Based Encryption 9
  • 10. 效率对比 BF-IBE @ 512bit ECC, 512bit ECC : 160bit ECC = 9:1 2007-7-24 Identity Based Encryption 10
  • 11. 实现 Stanford PBC  Voltage IBE  Shamus MIRCAL  2007-7-24 Identity Based Encryption 11

×