改进的移动计算平台直接匿名证明方案

doi:10.3969/j.issn.1000-436X.2013.06.008

Journal on Communications ›› 2013, Vol. 34 ›› Issue (6): 69-75.doi: 10.3969/j.issn.1000-436X.2013.06.008

• paper • Previous Articles Next Articles

Improved direct anonymous attestation scheme for mobile computing platforms

Li YANG,Jun-wei ZHANG,Jian-feng MA,Zhi-hong LIU

School of Computer Science ＆ Technology,Xidian University,Xi'an 710071,China

Online:2013-06-25 Published:2017-07-20
Supported by:
The Program for Changjiang Scholars and Innovative Research Team in University;The National Natural Science Foundation of China;The National Natural Science Foundation of China;The National Natural Science Foundation of China;The National Natural Science Foundation of China;The National Natural Science Foundation of China;The National Natural Science Foundation of China;The Natural Science Basic Research Plan in Shaanxi Province of China;The Natural Science Basic Research Plan in Shaanxi Province of China;The Natural Science Basic Research Plan in Shaanxi Province of China;The Natural Science Basic Research Plan in Shaanxi Province of China;The Natural Science Basic Research Plan in Shaanxi Province of China

Abstract

Abstract:

The security flaws of a direct anonymous attestation scheme proposed by Ge,et al.Were analyzed,and the re-sult shows that the authentication protocol of the scheme is vulnerable to reply attacks and platform masquerade attacks when being used for remote attestation.An improved direct anonymous attestation authentication scheme with the in-volvement of key agreement was proposed to provide the property of mutual authentication.The analysis shows that the proposal can realize direct anonymous attestation with the properties of forgery-resistance and anonymity,and resist reply attacks and platform masquerade attacks; the scheme is effective and suitable for the mobile trusted computing platforms.

Key words: trusted computing, remote attestation, direct anonymity attestation, key agreement

Li YANG,Jun-wei ZHANG,Jian-feng MA,Zhi-hong LIU. Improved direct anonymous attestation scheme for mobile computing platforms[J]. Journal on Communications, 2013, 34(6): 69-75.

Figures/Tables 3

References 12

[1]	Trusted Computing Group. Summary of features under consideration for the next generation of TPM[EB/OL]. , 2009.
[2]	BALFE S , GALLERY E , MITCHELL C J , et al. Challenges for trusted computing[J]. IEEE Security ＆ Privacy, 2008,6(6): 60-66.
[3]	Trusted Computing Group. Trusted computing platform alliance (TCPA) main specification version 1.1b[EB/OL]. , 2001.
[4]	BRICHELL E , CAMENISCH J , CHEN L Q . Direct anonymous attestation[A]. Proceedings of the 11th ACM Conference on Computer and Communications Security[C]. New York,NY,USA, 2004. 132-145.
[5]	EMANUELE C , HANS L , GIANLUCA R , et al. Anonymous authentication with TLS and DAA[A]. IEEE VTC Fall[C]. TRUST 2010,LNCS 6101, 2010. 47-62.
[6]	WALKER J , LI J T . Key exchange with anonymous authentication using DAA-SIGMA protocol[A]. INTRUST 2010,LNCS 6802[C]. Ottawa,Canada, 2011. 108-127.
[7]	CAMENISCH J , LYSYANSKAY A . Dynamic accumulators and application to efficient revocation of anonymous credentials[A]. Cryptology—CRYPTO 2002[C]. Springer Verlag, 2002. 61-76.
[8]	CAMENISCH J , STADLER M . Efficient group signature schemes for large groups[A]. CRYPTO '97[C]. Springer Verlag, 1997. 410-424.
[9]	GE H , TATE S R . A direct anonymous attestation scheme for embedded devices[A]. PKC 2007[C]. Springer,Heidelberg, 2007.
[1]	CAMENISCH J , MICHELS M . A Group Signature Scheme Based on an RSA-Variants[R]. Technical Report RS-98-27,BRICS, University of Aarhus, 1998.
[11]	REHBOCKA S , HUNT R . Trustworthy clients: extending TNC to Web-based environments[J]. Computer Communications, 2009,32(5): 1006-1013.
[12]	MENEZES A J , OORSCHOT P C , VANSTONE S A . Handbook of Applied Cryptography[M]. CRC Press,Inc, 1997. 613-619.

Metrics

Recommended 0

No Suggested Reading articles found!

名称	可信计算平台		验证者计算量
名称	Host计算量	TPM计算量	验证者计算量
BCC	14EX+25M+1H	8EX+8M+2H	23EX+5M+4H
DAA-ED	3EX+1M+1H	1EX+1M	4EX+2M+1H
本方案	5EX+1M+1H+1EK	1EX+1M	6EX+2M+1H+1DK

[1]	Haibo ZHANG, Kai LAN, Zhou CHEN, Ruyan WANG, Can ZOU, Mingyue WANG. Ring-based efficient batch authentication and group key agreement protocol with anonymity in Internet of vehicles [J]. Journal on Communications, 2023, 44(6): 103-116.
[2]	Yinghui ZHANG, Lingyun HU, Yixin LI, Jianting NING, Dong ZHENG. Secure and efficient batch authentication scheme based on dynamic revocation mechanism in space information network [J]. Journal on Communications, 2022, 43(4): 164-176.
[3]	Haibo ZHANG, Zhou CHEN, Hongwu HUANG, Xiaofan HE. Intra-group mutual authentication key agreement protocol based on Chinese remainder theorem in VANET system [J]. Journal on Communications, 2022, 43(1): 182-193.
[4]	Zhiqiang YAO, Zhirong ZHU, Guohua YE. Achieving resist against DHCP man-in-the-middle attack scheme based on key agreement [J]. Journal on Communications, 2021, 42(8): 103-110.
[5]	Qimei CUI, Wenjing ZHAO, Xiaoyang GU, Zengbao ZHU, Xiaoxuan ZHU, Xiaofeng TAO, Wei NI. Efficient handover authentication and secure key-updating mechanism for B5G networks [J]. Journal on Communications, 2021, 42(12): 96-108.
[6]	Bibo TU, Jie CHENG, Haojun XIA, Kun ZHANG, Ruina SUN. Overview of research on trusted attestation technology of cloud virtualization platform [J]. Journal on Communications, 2021, 42(12): 212-225.
[7]	Xinfeng HE,Junfeng TIAN,Fanming LIU. Survey on trusted cloud platform technology [J]. Journal on Communications, 2019, 40(2): 154-163.
[8]	Junfeng TIAN,Tianle LI. Data integrity verification based on model cloud federation of TPA [J]. Journal on Communications, 2018, 39(8): 113-124.
[9]	Junfeng TIAN,Yongchao ZHANG. Trusted auditing method of virtual machine based on improved expectation decision method [J]. Journal on Communications, 2018, 39(6): 52-63.
[10]	Liang TAN,Neng QI,Lingbi HU. New extension method of trusted certificate chain in virtual platform environment [J]. Journal on Communications, 2018, 39(6): 133-145.
[11]	Zijian ZHANG,Qi ZHOU,Chuan ZHANG,Xiaoyao TONG,Chunlei LI,Long WANG. New low-earth orbit satellites authentication and group key agreement protocol [J]. Journal on Communications, 2018, 39(6): 146-154.
[12]	Xingshu CHEN,Wei WANG,Xin JIN. Label-based protection scheme of vTPM secret [J]. Journal on Communications, 2018, 39(11): 170-180.
[13]	Tian-shu WANG,Gong-xuan ZHANG,Xi-chen YANG. Trusted solution monitoring system based on ZigBee wireless sensor network [J]. Journal on Communications, 2017, 38(Z2): 67-77.
[14]	Xing RONG,Chang-xiang SHEN,Rong JIANG,Yong ZHAO. Remote attestation scheme for cloud platform based on double-layer unbalanced hash tree [J]. Journal on Communications, 2017, 38(9): 31-38.
[15]	Yuan SHI,Huan-guo ZHANG,Bo ZHAO,Zhao YU. Security-enhanced live migration based on SGX for virtual machine [J]. Journal on Communications, 2017, 38(9): 65-75.

Improved direct anonymous attestation scheme for mobile computing platforms

RichHTML

PDF

Knowledge

Cited

Abstract

Cite this article

share this article

Figures/Tables 3

References 12

Related Articles 15

Metrics

Recommended 0