为了提高远程证明方案的效率以及安全性,提出一种基于模块属性的远程证明协议。相较于传统的远程证明协议,该协议选择基于模块属性,在保证安全性的同时缩小了证明的交互范围,减少了证明时间;同时使用基于自认证公钥的盲签密方案形成模块属性密文。该签密方法基于双线性对,在验证公钥时不需额外证书,具有计算量小、效率高的优点。实验证明,相比于先使用Nybery-Rueppel签名后通过RSA加密的属性证书形成方案,该方案可有效减少远程证明方案的运行时间,从而提高远程证明的效率。%In order to improve the efficiency and security of remote attestation program , we present a module property-based remote attestation protocol .Compared with traditional remote attestation protocol , this protocol selects to be based on module property , narrows the interactive range of proof while ensuring the security .Meanwhile , it uses the blind signcryption scheme which is based on self-certified public key to form module property ciphertext .This signcryption method is based on the bilinear and does not need additional verification public key certificate when verify the public key .It has the advantages of small computation complexity and high efficiency .Proved by the experiment , this scheme can effectively reduce the running time of remote attestation program so as to improve the efficiency of remote attestation compared with the property certificate generation scheme which uses the Nybery-Rueppel signature first and then encrypting by RSA .
展开▼