一种容忍入侵的会议密钥分配方案

基于可验证秘密共享技术和知识证明，提出了一种计算上安全的容忍入侵的会议密钥分配方案．该方案具有结构简单、安全性强等特点．分析表明，即使方案中实施密钥分配的服务器组中有部分服务器为入侵者所成功控制，会议的所有诚实用户仍可得到关干会议的正确的密钥；在Diffie-Hellmen Decisional问题假设下，任何窃听者均无法得到有关会议密钥的任何信息；主动攻击者也无法成功进行任何假冒，由于采用了非交互式的知识证明，所提方案需要的计算开销和通信开销都比较少，效率较高，有着较强的实用性．

An intrusion-tolerant conference key distribution scheme

This paper proposes a computationally secure and fault-tolerant conference key distribution scheme, which only requires the authenticated and encrypted point-to-point channels between each server and each user. By the combined use of knowledge proof and verifiable secret sharing, the scheme has the properties of simple structure and high security. Analysis shows that every honest user of a conference can get a common key after the running of the protocol, even if a minority of the servers malfunction or misbehave. We also show that on the assumption of a Diffie-Hellman decisional problem, a passive adversary gets zero knowledge about the conference key, and the active adversary cannot impersonate someone successfully. Because the knowledge proof method we adopt is non-interactive, both operation and communication overheads are reduced, thus making the schemes very efficient.