An authentication key agreement method and implementation device based on cross-interlock mechanism

Abstract

In order to minimize the cost of the authentication key agreement process on the basis of ensuring safety and reliability, the invention discloses an authentication key agreement method based on a cross-interlock mechanism and an implementation device thereof. Using the basic difficulty of the public key to achieve mutual authentication by means of cross-interlocking, as long as the attacker cannot obtain the long-term private key and temporary private key of one party at the same time or the long-term private key of the two parties at the same time, the session key negotiated by this method It is safe, and reliable key agreement is realized by adding a key confirmation link. The ECC-based embodiment shows that the calculation amount is only 4 scalar times, and each party only needs to send one message in the negotiation phase (excluding confirmation). Therefore, the present invention provides a safe, reliable and efficient authentication session key negotiation method and its implementing device.

Description

technical field [0001] The invention belongs to the technical field of authentication key establishment in network security, in particular to a public key-based non-certificate authentication or self-authentication key negotiation (or distribution, distribution, exchange) method, which can be used for inter-node security in distributed networks Efficiently negotiate shared session keys. Background technique [0002] With the continuous development of information technology, computer networks have developed from local area networks, wide area networks, and the Internet to the current mobile Internet, Internet of Things and other next-generation networks, and the most important issue in the industrial application of these network technologies is security. Especially with the research and application of the wireless and open next-generation Internet, security issues become more prominent. In order to realize the secure communication of open and interconnected computer networks...

AI Technical Summary

Problems solved by technology

[0013] 2) There is no key confirmation link, and it is vulnerable to jamming (Jamming) attacks: the attacker can repeatedly generate and send random M A To allow the victim B to perform the negotiation process and generate a series of unnecessary calculations, this type of attack cannot be detected without a confirmation link, which is fatal to wireless communication users powered by batteries, etc.

[0014] 3) It is not symmetric and inconvenient to implement: for a distributed network, the identities of users have an equal relationship, and usually any party should be both an initiator and a responder

However, if both parties act as initiators at the same time, the above negotiation method will waste energy due to repeated negotiations, and it will also easily cause the participants to be unable to judge whether they are initiators or responders, which is not conducive to correctly arranging the order of calculating session key parameters ( due to slightly different methods of computing the final shared secret between the initiator and the responder)

Images