In order to resolve the problems of collusion attack and users private key escrow, this paper proposes a user public key authentication algorithm based on Combined Public Key(CPK). In the algorithm, Key Management Center(KMC) produces user's signing private key matrix and signing public key matrix, user produces self public key and private key randomly, and key management center uses user's signing private key to sign user's public key. Analysis result proves that substituting signing private key matrix for single signing private key enlarges the space of signing private key and improves security of the system.%为解决组合公钥算法中的共谋攻击问题及用户私钥托管问题,提出一种基于组合公钥的用户公钥认证算法.其中,密钥管理中心生成用户的签名公私钥矩阵,用户随机生成自己的公私钥对,密钥管理中心使用用户的签名私钥对用户的公钥进行签名.理论分析证明,该算法使用签名私钥矩阵代替单个的签名私钥,从而扩大了签名私钥的空间,增强了系统的安全性.
展开▼
