A distributed and hierarchical key issuing protocol in identity-based cryptosystem

Author

Na Wang ; Ning Zhou ; Yingjian Zhi ; Binqiang Wang

Author_Institution

Inf. Eng., Univ. Zhengzhou, Zhengzhou

fYear

2007

fDate

12-14 Dec. 2007

Firstpage

924

Lastpage

927

Abstract

Key escrow is an inherent weakness of the identity-based cryptosystem. Secure key issuing proposals previously proposed either lack concrete specification, or are vulnerable to several malicious attacks. The paper proposes a novel secure key issuing protocol, called the Distributed and Hierarchical Key Issuing (DHKI) protocol, in which the system master key is distributed to n distinct sPKGs (a share of Private Key Generators), and a user firstly obtains a share of private key and an identity attestation from a primary sPKG, then requests other shares of private key from secondary sPKGs by submitting the identity attestation, to retrieve his private key. DHKI supports key revocation, and is secure against replay attack, forgery attack and stolen verifier attack etc. The paper applies DHKI in an identity-based BGP path verification mechanism proposed by us to issue a router´s private key.

Keywords

cryptographic protocols; private key cryptography; BGP path verification mechanism; DHKI supports key revocation; distributed-and-hierarchical key issuing protocol; forgery attack; identity-based cryptosystem; key escrow; private key generator; replay attack; secure key issuing protocol; stolen verifier attack; system master key; BGP; identity-based cryptography; key escrow;

fLanguage

English

Publisher

iet

Conference_Titel

Wireless, Mobile and Sensor Networks, 2007. (CCWMSN07). IET Conference on

Conference_Location

Shanghai

ISSN

0537-9989

Print_ISBN

978-0-86341-836-5

Type

conf

Filename

4786355