发明名称 |
Low bandwidth zero knowledge authentication protocol and device |
摘要 |
A method authenticates d<SUB>i </SUB>identities in parallel using two prime numbers p and q such that q|p-1. Each identity includes a private key s<SUB>i </SUB>and a public key v<SUB>i</SUB>, and a publicly known generator is alpha such that alpha<SUP>q</SUP>≡1 (mod p). A verifier is provided with an ordered list of the public keys v<SUB>i</SUB>. A prover selects uniformly at random a non-negative number r less than q. A number x=alpha<SUP>r </SUP>(mod p) is sent from the prover to a verifier. The verifier selects uniformly at random a non-negative number e less than 2<SUP>(t+logd)</SUP>, where log is base 2 , and a number t is a predetermined security parameter. The prover receives from the verifier the number e. A number y=r+Sigma<SUB>i </SUB>s<SUB>i</SUB>*e<SUP>i </SUP>(mod q) is generated by the prover, and the number Y is sent to the verifier, who then determines if an equality x=alpha<SUP>y</SUP>*Pi<SUB>i</SUB>(v<SUB>i</SUB>)<SUP>e</SUP><SUP><SUP2>i </SUP2></SUP>(mod p) is true. The prover is accepted as having the d<SUB>i </SUB>identities if and only if the equality is true. In a preferred embodiment the communications between the prover and the verifier is via a low-bandwidth optical channel.
|
申请公布号 |
US7245718(B2) |
申请公布日期 |
2007.07.17 |
申请号 |
US20030649855 |
申请日期 |
2003.08.26 |
申请人 |
MITSUBISHI ELECTRIC RESEARCH LABORATORIES, INC. |
发明人 |
SUNDARAM RAVI;YERAZUNIS WILLIAM S. |
分类号 |
G06K19/10;H04K1/00;H04L9/00;H04L9/10;H04L9/28;H04L9/32 |
主分类号 |
G06K19/10 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|