支持等式测试及密码逆向防火墙的SM9标识加密方案.pdfVIP

计算机研究与发展DOI：10.7544/issn1000-1239.202220809

Journal

of

Computer

Research

and

Development61（4）：1070−1084，2024

支持等式测试及密码逆向防火墙的SM9标识加密方案

熊虎林烨姚婷

（电子科技大学信息与软件工程学院成都610054）

（网络与数据安全四川省重点实验室（电子科技大学）成都610054）

（xionghu.uestc@）

SM9Identity-BasedEncryptionSchemewithEqualityTestandCryptographic

ReverseFirewalls

Xiong

Hu,

Lin

Ye,

and

Yao

Ting

（SchoolofInformationandSoftwareEngineering,UniversityofElectronicScienceandTechnologyofChina,Chengdu610054）

（NetworkandDataSecurityKeyLaboratoryofSichuanProvince(UniversityofElectronicScienceandTechnologyofChina),Chengdu

610054）

AbstractThe

identity-based

encryption

with

equality

test

(IBEET)

scheme

solves

the

problem

of

certificate

management

in

traditional

equality

test

schemes

and

gets

wide

attention.

However,

the

existing

IBEET

systems

are

difficult

to

resist

penetration

attacks

and

based

on

foreign

cipher

algorithm

designs

without

independent

intellectual

property

rights.

To

deal

with

this

challenge,

we

propose

a

SM9

identity-based

encryption

scheme

with

equality

test

and

cryptographic

reverse

firewalls

(SM9-IBEET-CRF).

The

cipher

reverse

firewalls

(CRF)

which

are

deployed

in

the

upstream

channel

between

users

and

cloud

server

can

re-randomize

the

information

to

protect

against

penetration

attacks.

This

scheme

expands

SM9

identity-based

encryption

algorithm

to

IBEET,

improves

its

efficiency

and

enriches

the

research

of

secret

algorithm

in

cloud

computing.

We

give

the

definition

of

SM9-IBEET-CRF

and

corresponding

security

models.

In

random

oracle

model,

the

scheme

formalizes

the

IBE-IND-CCA

and

IBE-OW-CCA

security

into

the

BDH

difficulty

assumption

by

considering

two

different

opponents.

At

the

same

tim