PoS: Constructing Practical and Efficient Public Key Cryptosystems Based on Symmetric Cryptography with SGX

机译：PoS：使用SGX构建基于对称密码的实用高效的公共密钥密码系统

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Public key cryptosystems (PKCs) often rely on public key algorithms based on mathematical problems that currently admit no efficient solution, such as integer factorization and discrete logarithm, which are relatively computationally costly compared with most symmetric key algorithms of equivalent security. In this paper, we propose PoS, constructing practical and efficient PKCs based on symmetric cryptography with SGX. To achieve this, we separate private and public operations into dedicated private and public SGX enclaves, hosted on the recipient and sender sides respectively, and leverage the security mechanisms provided by SGX to make symmetric keys shared between private enclave and public enclave, while being kept secret from the sender, by limiting the shared keys within public enclave and not exportable. PoS gains security guarantees when the security assumptions of SGX and symmetric cryptography stand. To demonstrate the practicality and efficiency of the PKCs constructed on PoS, we have constructed, implemented, and benchmarked two PKCs based on PoS, PKE-PoS and IBE-PoS. The evaluation results show that both PKE-PoS and IBE-PoS gain excellent performance: the performance of PKE-PoS is up to 195 times of that of RSA-2048, and the performance of IBE-PoS is up to 4 orders of magnitude higher than that of Boneh-Franklin IBE.

机译：公钥密码系统（PKC）通常依赖于基于数学问题的公钥算法，这些数学问题目前尚不接受有效的解决方案，例如整数分解和离散对数，与同等安全性的大多数对称密钥算法相比，它们的计算成本较高。在本文中，我们提出了PoS，使用SGX基于对称密码构造实用且有效的PKC。为了实现这一目标，我们将私有和公共业务划分为专用的私有和公共SGX安全区，分别托管在接收方和发送方，并利用SGX提供的安全机制在私有安全区和公共安全区之间共享对称密钥，同时将其保留下来。通过将共享密钥限制在公共区域内并且不可导出，将发件人的机密保密。当SGX和对称密码学的安全性假设成立时，PoS将获得安全性保证。为了证明基于PoS构建的PKC的实用性和效率，我们基于PoS，PKE-PoS和IBE-PoS构建，实施和基准化了两个PKC。评估结果表明，PKE-PoS和IBE-PoS均具有出色的性能：PKE-PoS的性能高达RSA-2048的195倍，IBE-PoS的性能高出4个数量级。比Boneh-Franklin IBE的要好。

著录项

来源
《International conference on information and communications security》|2018年|767-777|共11页
会议地点
作者
Huorong Li; Jingqiang Lin; Bingyu Li; Wangzhao Cheng;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Software Guard Extension; Public key cryptosystems; Identity-based encryption; Cryptographic keys;

机译：Software Guard扩展;公钥密码系统;基于身份的加密;加密密钥;

相似文献

外文文献
中文文献
专利

1. A new principle for constructing public-key cryptosystems and several new classes of public-key cryptosystems constructed based on the new principle [J] . Masao Kasahara 電子情報通信学会技術研究報告. 情報セキュリティ. Information Security . 2003,第61期

机译：构建公用密钥密码系统的新原理和基于该新原理构造的几类新的公用密钥密码系统
2. A new principle for constructing public-key cryptosystems and several new classes of public-key cryptosystems constructed based on the new principle [J] . Masao Kasahara 電子情報通信学会技術研究報告. 情報セキュリティ. Information Security . 2003,第61期

机译：构建公钥密码系统的新原则以及基于新原则构建的几个新的公钥密码系统
3. Construction of New Classes of Product-sum Type Public Key Cryptosystem, K(Ⅱ)∑∏PKC, Constructed Based on the Maximum Length Code: A Possibility of Opening Up a New Field of Applications of Cryptosystem [J] . Masao KASAHARA 電子情報通信学会技術研究報告 . 2012,第39期

机译：基于最大长度代码构造的新的产品和类型公钥密码系统K（Ⅱ）∑∏PKC的构建：开辟密码系统应用新领域的可能性
4. PoS: Constructing Practical and Efficient Public Key Cryptosystems Based on Symmetric Cryptography with SGX [C] . Huorong Li, Jingqiang Lin, Bingyu Li, International Conference on Information and Communications Security . 2018

机译：POS：构建基于SGX对称密码学的实用和高效公钥密码系统
5. Efficient and Secure Implementation of Secret-Key and Post-Quantum Public-Key Cryptography with Applications in Internet of Things, Cloud Computing, and Hardware Security [D] . Farahmand, Farnoud. 2020

机译：秘密和安全地实现秘密密钥和Quantum公钥加密，在物联网上，云计算和硬件安全性
6. An Anonymous User Authentication and Key Agreement Scheme Based on a Symmetric Cryptosystem in Wireless Sensor Networks [O] . Jaewook Jung, Jiye Kim, Younsung Choi, 2016

机译：无线传感器网络中基于对称密码系统的匿名用户认证和密钥协商方案
7. The Research of Implementation Technology Based on Elliptic Curve Cryptosystem and Public Key Cryptography [O] . 贾英涛 2007

机译：基于椭圆曲线密码和公钥密码学的实现技术研究
8. Status Report on Knapsack-Based Public Key Cryptosystems [R] . Brickell, E. F., Simmons, G. J. 1983

机译：基于背包的公钥密码系统状态报告

PoS: Constructing Practical and Efficient Public Key Cryptosystems Based on Symmetric Cryptography with SGX

摘要

著录项

相似文献

相关主题

期刊订阅