摘要:对文件等进行加密时,产生密钥,密钥封装机制(KEM)就是把该密钥采用非对称(公钥)算法加密,然后再进行传输。为了防止泄露,采用状态化方法将密钥分割后分别用来解密,以确保其安全性。ElGamal公钥密码体制是基于离散对数问题的公钥密码体制,有较好的安全性,是除了RSA以外最有代表性的公钥密码体制之一。因此,如何使ElGamal型公钥密码体制在实际使用中更加安全,以增强其对密钥泄漏的弹性,是本论文研究的重点所在。论文将状态化思想引入到ElGamal型的基于身份的和无证书的密码系统中。对文献中两种公钥加密系统中的密钥封装方案,给出了状态化方法。状态化的密钥封装能有效抵抗密钥泄漏攻击,同时可直接使用到加密方案中以提高加密系统的安全性能。
关键字:状态化 ;ElGamal型 ;密钥封装
Abstract:When to encrypt files, generating a key, key encapsulation mechanism encrypt this key with asymmetric algorithm encryption,then for transmission. In order to prevent leakage and methods of using the state divided the key into two parts used to decrypt to ensure their safety. ElGamal public-key cryptosystem is based on discrete logarithm problem of public-key cryptosystem, have better security, is the most representative except the RSA public key cryptosystems. Therefore, this thesis focuses on how to enhance the security of ElGamal type cryptosystems in real applications so that they are resilient to key leakage attacks. We introduce the technique of stateful key encapsulation mechanism into identity-based and certificateless cryptography. Stateful key encapsulation methods are shown for the encryption schemes in refference [1] and [2]. As stateful key encapsulation mechanisms can withsatnd key leakage attacks, they can be directly used in encryption schemes to improve their security performance.
Keyword:stateful ;ElGamal ;key encapsulation
ElGamal公钥密码体制作为一个很有代表性的公钥密码体制,有着十分广泛的应用。通过对密钥封装机制的了解发现,密钥封装机制也可以选择ElGamal型算法来实现。将ElGamal型公钥密码体制与加密体制相结合,通过对密钥的封装,使得加密以及密钥的传输都能够进行的更加安全。具体的方法主要就是使用某一加密体制对消息进行加密,发件者使用收件者的公钥对该加密过程产生的密钥K经过ElGamal型加密体制封装,收件者使用自己的私钥进行解密得出密钥K,再用解密出来的K来解密消息。