抗泄漏安全的公钥加密体制研究

项目名称： 抗泄漏安全的公钥加密体制研究

项目编号： No.61272536

项目类型： 面上项目

立项/批准年度： 2013

项目学科： 自动化技术、计算机技术

项目作者： 周渊

作者单位： 国家计算机网络与信息安全管理中心

项目金额： 82万元

中文摘要： 随着各种旁路攻击方法的发现，现有的可证明安全的密码体制很多都被发现是不安全的，这主要是由于密码方案在实际部署环境下，一些私密信息可以被泄露出来。工业界对此类攻击方法的防御措施并不能从根本上解决问题，这就需要用新的密码技术来解决此问题。由于公钥加密体制是个非常基本的密码学原主，而且有着广泛的应用，因此对抗泄露公钥加密体制的研究有着非常重要的理论意义和实际价值。现有的抗泄露密码学主要关注于密码算法的事前泄露性质，但是实际中，事后泄露攻击也是非常常见的。本项目从多个方面来考察公钥加密体制的抗泄露特性，包括抗事后泄露的公钥加密方案、抗事后泄露的基于身份加密方案、基于计算性困难假设的抗泄露加密方案等。本项目对公钥加密体制进行了全方位的考察，在理论上和实际上有效的解决了加密体制在抵抗更实际的旁路攻击方面所面临的问题.

中文关键词： 抗泄漏密码；标准模型；标准假设；单向函数；伪随机产生器

英文摘要： Recently, many kinds of side-channel attacks have been discovered, and then many provably secure cryptosysytems were found insecure. The main reason lies in that some private information might be leaked when the system was deployed in practice. Researchers in the industrial field take many counter measures to resist these attacks. However, the methods are ad-hoc and cannot fully resolve the problem in essence. Researchers then try to use cryptographic tools to protect cryptosystems against side-channel attacks. As public-key cryptosystem is a very basic cryptographic primitive, and has broad applications, it is of great theoretical meanings and practical value to research on leakage-resilient public-key cryptosystems. Existing researches mainly focus on before-the-fact leakage. However, in practice, after-the-fact leakage is also very common. This project studies leakage-resilient cryptosystems from the following aspects: after-the-fact leakage resilient public-key encryption schemes, after-the-fact leakage resilient identity-based encryption schemes, leakage resilient encryption schemes from computational assumptions and so on. This project takes a full investigation on encryption schemes, and resolve many problems both from theory and practice.

英文关键词： leakage-resilient cryptography；standard model；standard assumption；one-way function；pseudorandom generator