选择密文安全的可验证Mix-Net协议

李龙海; 黄诚强; 许尚妹; 付少锋

doi:10.11959/j.issn.1000-436x.2015185

您当前的位置：

首页 >

文章列表页 >

选择密文安全的可验证Mix-Net协议

学术论文 | 更新时间：2024-06-05

- 选择密文安全的可验证Mix-Net协议
- CCA-secure verifiable Mix-Net protocol
- 通信学报 2015年36卷第10期页码：17-27
- 作者机构：
  
  西安电子科技大学计算机学院，陕西西安 710071
- 作者简介：
  
  [ "李龙海（1976-），男，河北冀州人，博士，西安电子科技大学副教授、硕士生导师，主要研究方向为匿名通信、隐私保护技术和计算机网络安全。" ]
  [ "黄诚强（1989-），男，福建福州人，西安电子科技大学硕士生，主要研究方向为计算机与网络安全。" ]
  [ "许尚妹（1990-），女，浙江杭州人，西安电子科技大学硕士生，主要研究方向为计算机与网络安全。" ]
  [ "付少锋（1975-），男，陕西户县人，西安电子科技大学副教授，主要研究方向为计算机网络安全和嵌入式系统。" ]
- 基金信息：
  
  国家自然科学基金资助项目(61101142)
- DOI：10.11959/j.issn.1000-436x.2015185
  中图分类号： TP393.08
- 网络出版日期：2015-10，
  
  纸质出版日期：2015-10-25
- 稿件说明：
移动端阅览
李龙海, 黄诚强, 许尚妹, 等. 选择密文安全的可验证Mix-Net协议[J]. 通信学报, 2015,36(10):17-27.

Long-hai LI, Cheng-qiang HUANG, Shang-mei XU, et al. CCA-secure verifiable Mix-Net protocol[J]. Journal on communications, 2015, 36(10): 17-27.
李龙海, 黄诚强, 许尚妹, 等. 选择密文安全的可验证Mix-Net协议[J]. 通信学报, 2015,36(10):17-27. DOI： 10.11959/j.issn.1000-436x.2015185.

Long-hai LI, Cheng-qiang HUANG, Shang-mei XU, et al. CCA-secure verifiable Mix-Net protocol[J]. Journal on communications, 2015, 36(10): 17-27. DOI： 10.11959/j.issn.1000-436x.2015185.

摘要

提出了一种在选择密文攻击下可证明安全的可验证Mix-Net协议。在Wikström Mix-Net方案基础上，引入了新的密钥生成算法和秘密混洗零知识证明构造方法，提高了安全性。在不暴露输入密文与输出明文匹配关系的条件下，任何人都可以根据Mix服务器公布的证据验证输出结果的正确性，即满足可公开验证性；任意发送者还可以追踪和检验自己输入的密文的处理过程，即满足发送者可验证性。基于随机预言机假设证明了该协议在适应性选择密文攻击模型下的安全性。与之前具有类似安全属性的方案相比，所提协议无需信任中心，无需用户与服务器之间的多轮交互，计算和通信复杂度更低，因此是构建安全电子选举协议的理想密码学工具。

Abstract

A CCA-secure verifiable Mix-Net protocol with provable security was proposed.The protocol was based on Wikström’s Mix-Net and improves its security by introducing an improved key generation algorithm and a new method for constructing proof of secret shuffling.Without revealing the correspondence between inputs and outputs

proposed protocol enables everyone to verify the correctness of output plaintexts through checking evidences broadcasted by each server.Thus

it satisfies public verifiability.Any sender can trace and examine the processing procedure of its ciphertext.Thus

proposed protocol satisfies sender verifiability.It is prored to be CCA-secure under the assumption of random oracle.Compared with previous mix-net schemes which are CCA-secure

proposed protocol does not require any trusted center

and incurs fewer interactions between servers which also resulting in a lower computation and communication complexity.Hence

the protocol is an ideal cryptographic tool for constructing secure electronic election protocol.

关键词

Keywords

references

CHAUM D . Untraceable electronic mail,return addresses,and digital pseudonyms [J ] . Communications of the ACM , 1981 , 24 ( 2 ): 84 - 88 .

DINGLEDINE R , MATHEWSON N , SYVERSON P . Tor:the second-generation onion router [A ] . Proceedings of the 13th USENIX Security Symposium [C ] . San Antonio,USA , 2004 . 303 - 320 .

DEMIREL D , HENNING M , VANDEGRAAF J , et al . Prêt à voter providing everlasting privacy [A ] . Proceedings of the 4th International Conference on E-Voting and Identity [C ] . Guildford,UK , 2013 . 156 - 175 .

YI X , OKAMOTO E . Practical Internet voting system [J ] . Journal of Network and Computer Applications , 2013 , 36 ( 1 ): 378 - 387 .

GABBER E , BIBBONS P , MATIAS Y . How to make personalized Web browsing simple,secure,and anonymous [A ] . Financial Cryptography ’97 [C ] . Anguilla,UK , 1997 . 17 - 31 .

JAKOBSSON M , RAIHI D . Mix-based electronic payments [A ] . Proceedings of SAC ’98 [C ] . London,UK , 1998 . 157 - 173 .

JAKOBSSON M . Flash mixing [A ] . Proceedings of PODC ’99 [C ] . Atlanta,Georgia,USA , 1999 . 83 - 89 .

JAKOBSSON M , JUELS A . An optimally robust hybrid mix network [A ] . Twentieth ACM Symposium on Principles of Distributed Computing [C ] . New York,NY,USA , 2001 . 284 - 292 .

GOLLE P , ZHONG S , BONEH D , et al . Optimistic mixing for exit-polls [A ] . Advances in Cryptology-Asiacrypt ’02 [C ] . Queenstown,New Zealand , 2002 . 451 - 465 .

WIKSTRÖM D . A sender verifiable mix-net and a new proof of a shuffle [A ] . Advances in Cryptology-Asiacrypt ’05 [C ] . Chennai,India , 2005 . 273 - 292 .

ABE M . Flaws in robust optimistic mix-nets and stronger security notions [J ] . IEICE Transactions on Fundamentals of Electronics,Communications and Computer Sciences , 2006 , 89 ( 1 ): 99 - 105 .

WIKSTRÖM D . Five practical attacks for “optimistic mixing for exit-polls” [A ] . Proceedings of Selected Areas of Cryptography(SAC) [C ] . Ottawa Canada , 2003 . 160 - 174 .

MITOMO M , KUROSAWA K . Attack for flash mix [A ] . Proceedings of ASIACRYPT 2000 [C ] . Kyoto,Japan , 2000 . 192 - 204 .

LI L H , FU S F , CHE X Q . A new relation attack on the optimistic mix-net [A ] . International Symposium on Computer Network and Multimedia Technology(CNMT 2009) [C ] . Wuhan,China , 2009 . 1 - 4 .

PENG K . Failure of a mix network [J ] . International Journal of Network Security ＆ Its Applications , 2011 , 3 ( 1 ): 81 - 97 .

WIKSTRÖM D . A universally composable mix-net [A ] . 1st Theory of Cryptography Conference [C ] . 2004 . 315 - 335 .

WIKSTRÖM D , GROTH J . An adaptively secure mix-net without erasures [A ] . 33rd International Colloquium on Automata,Languages and Programming [C ] . 2006 . 276 - 287 .

CAMENISCH J , MITYAGIN A . Mix-network with stronger security [A ] . 5th International Workshop on Privacy Enhancing Technologies [C ] . Cavtat,Croatia , 2005 . 128 - 146 .

KHAZAEI S , MORAN T,WIKSTRÖM D . A mix-net from any CCA2 secure cryptosystem [A ] . Advances in Cryptology – ASIACRYPT 2012 [C ] . Beijing,China , 2012 . 607 - 625 .

JAKOBSSON M , JUELS A , RIVEST R . Making mix nets robust for electronic voting by randomized partial checking [A ] . Proceedings of USENIX'02 [C ] . San Francisco,USA , 2002 . 339 - 353 .

FURUKAWA J , SAKO K . An efficient scheme for proving a shuffle [A ] . Advances in Cryptology- Crypto’01 [C ] . Santa Barbara,California,USA , 2001 . 368 - 387 .

NEFF A . A verifiable secret shuffle and its application to E-Voting [A ] . Proceedings of ACM CCS ’01 [C ] . Philadelphia,Pennsylvania,USA , 2001 . 116 - 125 .

GROTH J . A verifiable secret shuffle of homomorphic encryptions [J ] . Journal of Cryptology , 2010 , 23 ( 4 ): 546 - 579 .

CANETTI R . Universally composable security:a new paradigm for cryptographic protocols [A ] . 42nd IEEE Symposium on Foundations of Computer Science [C ] . NY,USA , 2001 . 136 - 145 .

BELLARE M , ROGAWAY P . Random oracles are practical:a paradigm for designing efficient protocols [A ] . Proceedings of ACM CCS’ 93 [C ] . Fairfax,Virginia,USA , 1993 . 62 - 73 .

FIAT A , SHAMIR A . How to prove yourself:practical solutions to identification and signature problems [A ] . CRYPTO 1986 [C ] . 1986 . 186 - 194 .

PEDERSEN P . Non-interactive and information theoretic secure verifiable secret sharing [A ] . Advances in Cryptology-Crypto'91 [C ] . Santa Barbara,California,USA , 1991 . 129 - 140 .

DOLEV D , STRONG H . Authenticated algorithms for byzantine agreement [J ] . SIAM Journal on Computing , 1983 , 12 ( 4 ): 656 - 666 .

SHOUP V , GENNARO R . Securing threshold cryptosystems against chosen ciphertext attack [J ] . Journal of Cryptology , 2002 , 15 ( 2 ): 75 - 96 .

KHAZAEI S,WIKSTRÖM D . Randomized partial checking Revisited [A ] . Proceedings of the 13th International Conference on Topics in Cryptology [C ] . San Francisco,CA,February , 2013 . 115 - 128 .

KÜSTERS R , TRUDERUNG T , VOGT A . Formal analysis of chaumian mix nets with randomized partial checking [A ] . Proceedings of the 2014 IEEE Symposium on Security and Privacy [C ] . Washington,DC,USA , 2014 . 343 - 358 .

浏览量

849

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

高效的基于混合加密的乐观Mix-net协议

基于双线性对的乐观Mix-net协议