Three-party verifiable key agreement method for centralized mobile positioning system

Abstract

The invention discloses a three-party verifiable key negotiation method for a centralized mobile positioning system. By independently designing a self-certified ECC three-party certifiable key negotiation algorithm, the mutual authentication between a communication entity client, a central server and a positioning terminal is realized. Negotiate with the key to generate a secure session key; by using the self-designed self-certificate registration algorithm, the client, the central server and the positioning terminal can generate the public-private key pair and their own certificate locally, without the need for the key generation center and the The participation of certificate authority solves the problem of certificate management, certificate authentication overhead and third-party key escrow problem; by using self-designed signature algorithm and identity authentication algorithm, two-way authentication of communication entities can be realized, which can effectively resist man-in-the-middle attacks and Replay attack: The designed self-certified ECC three-party verifiable key agreement algorithm achieves the effect of one-time-one-password by setting a secure random number, ensuring forward security.

Description

technical field [0001] The invention relates to the field of computer network communication and network security, in particular to a three-party certifiable key negotiation method for a centralized mobile positioning system. Background technique [0002] With the development of Internet technology, centralized network service systems are widely used in enterprises due to their advantages of convenient deployment, convenient management, safety and reliability, such as centralized mobile positioning systems, centralized IoT systems, and centralized remote control systems. However, with the continuous development of the application technology of the centralized network service system, the security problems brought by it have gradually become prominent. In the multi-entity interaction system similar to the centralized mobile positioning system, most of them only provide the function of data transmission in plaintext, and it is difficult to ensure the security of data interaction...

AI Technical Summary

Problems solved by technology

[0015] Aiming at the technical problems in the above key agreement methods, such as the length of the key is too long, the complexity of the algorithm is high, the reliance on the third-party certificate authority, the reliance on the key generation center, the inability to resist active attacks and the inability to guarantee forward security, etc., the present invention provides The three-party authenticated key agreement method of the centralized mobile positioning system adopts the self-designed self-designed ECC three-party authenticated key agreement algorithm to ensure that each entity in the system can generate session keys safely and reliably during the interaction; for key length The problem of too long and the high complexity of the algorithm, the key length used by the present invention based on the ECC algorithm is shorter, and the encryption and decryption speed is faster than the modular exponentiation operation; for the problem of relying on third-party certificate agencies and relying on the key generation center, The method of the invention enables each entity in the system to generate a public-private key pair and its own certificate locally, without relying on other institutions for key custody or participating in certificate verification during mutual authentication; for the problem of being unable to resist man-in-the-middle attacks, the invention provides The self-designed signature algorithm and identity authentication algorithm are used in the authentication process, which can effectively avoid fake authentication responses and resist man-in-the-middle attacks; for the problem that forward security cannot be guaranteed, the present invention introduces a non-disclosed random The number reaches the one-time secret effect to ensure forward security; the method of the present invention can be successfully applied to a centralized mobile positioning system to ensure that the three-party entities in the centralized mobile positioning system can safely and reliably generate session keys, and have high encryption strength, The key length is short, the algorithm efficiency is high, and the characteristics of not relying on a third-party organization, the present invention is also applicable to multi-party entity interactive authentication key negotiation

Images