-
公开(公告)号:KR101543711B1
公开(公告)日:2015-08-12
申请号:KR1020110103670
申请日:2011-10-11
Applicant: 한국전자통신연구원
CPC classification number: H04L9/3255 , H04L2209/805
Abstract: 본발명의실시예들에따른짧은서명을제공하는경량그룹서명방법및 장치는기존에알려진제어가능연결성을제공하는그룹서명기법들과유사한보안특성들을제공하지만짧은서명을출력하고스마트단말상에서서명생성및 서명검증, 폐기시 우수한연산효율성을제공함으로써, 키폐기방법이단순하고서명생성및 검증시 연산효율성이우수하며매우짧은서명길이를출력하므로다양한익명성기반의응용환경에서폭넓게적용될수 있다.
-
公开(公告)号:KR1020130039174A
公开(公告)日:2013-04-19
申请号:KR1020110103670
申请日:2011-10-11
Applicant: 한국전자통신연구원
CPC classification number: H04L9/3255 , H04L2209/805
Abstract: PURPOSE: A lightweight group signature system with short signatures and a method thereof are provided to improve operation efficiency in signature generation, signature verification, and revocation on smart terminals, while providing security characteristics at a similar level with group signature mechanisms which provide controllable linkability. CONSTITUTION: A key issuing unit(110) initially generates a group public key as a trusted subject and generates a master issuing key(mik), a master opening key(mok), and a master linking key(mlk) corresponding thereto. The key issuing unit performs an interactive protocol, when receiving a join request from a new user device(140), and issues a signature key to the user device. A key revocation identifying unit(120) identifies whether revocation is performed using the updated revocation list and the master opening key when the revocation identification request is received from the signature verifying unit(150) and then, returns the identified results to the signature verifying unit. The key revocation identifying unit uses the master opening key to output the verification information for identifying a signer when a valid signature is given. A signer identification proof evaluating unit(160) evaluates the validity of the signer identification proof generated from a signature control unit(100). [Reference numerals] (100) Control unit; (110) Key issuing unit; (120) Key revocation identifying unit; (130) Signature connecting unit; (140) User device; (150) Signature verifying unit; (160) Signer identification proof evaluating unit; (AA) Generating a group public key; (BB) Master issuing key; (CC) Master identifying key; (DD) Master connecting key; (EE) Confirming signature connection information; (FF) Requesting confirmation of signature connection; (GG) Confirming key revocation; (HH) Requesting confirmation of key revocation; (II) Requesting identification of a signer; (JJ) Issuing a signature key; (KK) Generating a signature; (LL) Generating signer identification proof; (MM) Confirming signer identification proof;
Abstract translation: 目的:提供一种具有短签名的轻量级签名系统及其方法,以提高智能终端签名生成,签名验证和撤销操作的效率,同时提供与提供可控链路性的组签名机制相似的安全特性。 构成:密钥发布单元(110)最初生成作为可信对象的组公开密钥,并生成与其相对应的主发行密钥(mik),主开放密钥(mok)和主链接密钥(mlk)。 当从新用户设备(140)接收到加入请求时,密钥发布单元执行交互协议,并向用户设备发布签名密钥。 密钥吊销识别单元(120)在从签名验证单元(150)接收到撤销标识请求时,识别是否使用更新的撤销列表和主开放密钥执行撤销,然后将所识别的结果返回到签名验证单元 。 密钥吊销识别单元使用主开放密钥输出用于在给出有效签名时识别签名者的验证信息。 签名者识别确认评估单元(160)评估从签名控制单元(100)生成的签名者识别证明的有效性。 (附图标记)(100)控制单元; (110)发行单位; (120)钥匙撤销识别单元; (130)签名连接单元; (140)用户设备; (150)签名验证单元; (160)签名者识别证明评估单元; (AA)生成组公钥; (BB)主发卡钥匙; (CC)主识别键; (DD)主连接键; (EE)确认签名连接信息; (FF)请求确认签名连接; (GG)确认钥匙吊销; (HH)要求确认关键吊销; (二)要求签字人的身份证明; (JJ)签发签名密钥; (KK)生成签名; (LL)生成签名人身份证明; (MM)确认签署者身份证明;
-
公开(公告)号:KR1020110062869A
公开(公告)日:2011-06-10
申请号:KR1020090119722
申请日:2009-12-04
Applicant: 한국전자통신연구원
IPC: G09C1/00
Abstract: PURPOSE: A method for processing non-static quantum bit commitment is provided to secure the safety using a quantum entanglement distribution center and the non-locality of a quantum entanglement state. CONSTITUTION: A quantum entanglement organization measures the maximum entangled quantum state, and the quantum state determined by the measured value is provided to a transmitter(S201, S203, S205). The transmitter arbitrarily selects unitary transformation and applied the selected unitary transformation to the quantum state, and bit is transmitted and committed to a receiver(S207). The transmitter and the receiver are held(S209). After the transmitter discloses the information of unitary transformation, the quantum entanglement distribution organization discloses the information a measuring process and the measured value(S211, S213, S215).
Abstract translation: 目的:提供一种用于处理非静态量子位承诺的方法,以使用量子纠缠分布中心和量子纠缠状态的非局部性来确保安全性。 构成:量子纠缠组织测量最大纠缠量子态,将由测量值确定的量子态提供给发射机(S201,S203,S205)。 发射机任意选择单位变换,并将所选择的单位变换应用于量子态,并将位传送并提交给接收机(S207)。 保持发射机和接收机(S209)。 发射机公开了单一变换信息后,量子纠缠分布组织公开了信息的测量过程和测量值(S211,S213,S215)。
-
公开(公告)号:KR101351012B1
公开(公告)日:2014-01-10
申请号:KR1020100033400
申请日:2010-04-12
Applicant: 한국전자통신연구원
CPC classification number: H04L63/1416 , H04L9/0852
Abstract: N명의 사용자를 통해 이루어지는 양자 통신에 있어서, 사용자를 양자 통신상에서 수행하는 방법 및 장치를 제공한다. 본 발명의 실시 예에 따른 다자간 양자 통신에서의 사용자 인증 방법은, N명(N은 2보다 큰 자연수)의 사용자들 중 한 사용자가 N개의 입자로 구성된 양자 얽힘 상태를 제1 개수 생성하여 사용자들 각각에 대응하는 제1 개수의 입자를 사용자들에게 전송하는 단계; 양자 통신 서버가 사용자들 각각이 갖는 입자 중 임의 선택한 제2 개수의 입자 및 기 저장된 비밀키를 이용하여 연산된 제1 오류율에 근거하여 N명의 사용자들 중 위장공격자가 있는 지 판단하는 단계; 및 양자 통신 서버가 사용자들 각각이 입자 중 임의 선택한 제3 개수의 입자를 이용한 새로운 비밀키를 생성하여 기 저장된 비밀키와 교체하도록 제어하는 단계를 포함하는 것을 특징으로 한다.
-
公开(公告)号:KR101314210B1
公开(公告)日:2013-10-02
申请号:KR1020090113860
申请日:2009-11-24
Applicant: 한국전자통신연구원
CPC classification number: H04L9/0852
Abstract: 본 발명의 사용자 인증 양자 키 분배 방법은, Man-in-the-middle 공격에 취약성을 지닌 BB84 양자 키 분배(Quantum Key Distribution: QKD) 프로토콜의 무조건적 안전성을 보장하기 위해, 사전에 서로 공유한 비밀 키를 이용하여 축(Basis) 정보를 공개하지 않으면서 동일한 축을 갖는 위치를 공유하고, 그 위치에 대하여 동일한 측정값을 갖는지 여부를 확인하여 양자 채널을 인증하는 것을 특징으로 한다.
양자 사용자 인증 (Quantum User Authentication), 양자 키 분배 (Quantum Key Distribution), 광자 전송 (Photon Transmission)-
Patent Agency Ranking
公开(公告)号:KR1020120071883A
公开(公告)日:2012-07-03
申请号:KR1020100133609
申请日:2010-12-23
Applicant: 한국전자통신연구원
Abstract: PURPOSE: A quantum authentication method and apparatus for a QSS(Quantum Secret Sharing) protocol are provided to ensure efficiency by setting a short secret key regardless of the amount of quantum information and classical information transmitted from a protocol processing step. CONSTITUTION: A quantum transmission unit transmits a quantum state through a quantum entangled transmission step(S200). A quantum authentication apparatus performs an error rate estimation step by using an error output unit(S300). The quantum authentication apparatus performs a user authentication step by using a user authentication unit(S400). The quantum authentication apparatus performs a secret key generating step by using a secret key administration unit(S500). The secret key administration unit performs a confidential sharing step(S600).
Abstract translation: 目的:提供一种用于QSS(量子秘密共享)协议的量子认证方法和装置,以便通过设置一个较短的秘密密钥来确保效率,而不管从协议处理步骤发送的量子信息和经典信息的数量。 构成:量子传递单元通过量子纠缠传输步骤传输量子态(S200)。 量子认证装置通过使用错误输出单元执行错误率估计步骤(S300)。 量子认证装置通过使用用户认证单元执行用户认证步骤(S400)。 量子认证装置通过使用秘密密钥管理单元执行密钥生成步骤(S500)。 密钥管理单元执行机密共享步骤(S600)。
-
公开(公告)号:KR1020110057448A
公开(公告)日:2011-06-01
申请号:KR1020090113860
申请日:2009-11-24
Applicant: 한국전자통신연구원
CPC classification number: H04L9/0852
Abstract: PURPOSE: A quantum key distribution method for user authentication is provided to ensure unconditional stability by using a pure quantum authentication protocol without requiring a classical encryption algorithm. CONSTITUTION: A quantum transmission process is performed via a photon transmission process and a measurement process(S101). A user authentication process is performed via a coaxial location check process and a measured value comparison process(S102). A bit error rate estimation process is performed(S103). A post process is performed via an information reconciliation and a privacy amplification(S104). A secret key generation process is performed(S105).
Abstract translation: 目的:提供用于用户认证的量子密钥分发方法,通过使用纯量子认证协议,无需经典的加密算法来保证无条件的稳定性。 构成:通过光子传输处理和测量处理进行量子传输处理(S101)。 通过同轴位置检查处理和测量值比较处理执行用户认证处理(S102)。 执行误码率估计处理(S103)。 通过信息协调和隐私放大进行后处理(S104)。 执行密钥生成处理(S105)。
-
公开(公告)号:KR1020100068147A
公开(公告)日:2010-06-22
申请号:KR1020090016917
申请日:2009-02-27
Applicant: 한국전자통신연구원
CPC classification number: H04L9/0855
Abstract: PURPOSE: A method and a system for practicing a quantum bit committing protocol are provided to guarantee unconditional stability using a bidirectional quantum communication in a non-relative system. CONSTITUTION: A quantum state for containing a bit information entrusted to a mandatory or a receiver or the quantum state combined with the bit information is prepared in advance(S100). An Alice receiving a quantum state information entrusts the bit information to Bob(S200). The bit information corresponds to sensitive information promised the Bob with the Alice. The Alice and the Bob maintain the bit information entrusted for a predetermined time(S300). The predetermined time corresponds to a contracted arbitrary period between the Alice and the Bob. The Alice performs a public step for disclosing the bit information entrusted to the Bob(S400).
Abstract translation: 目的:提供一种用于实施量子位提交协议的方法和系统,以使用非相对系统中的双向量子通信来保证无条件的稳定性。 构成:预先准备用于包含委托给强制性或接收者的位信息或与位信息组合的量子态的量子态(S100)。 接收量子态信息的爱丽丝将比特信息委托给Bob(S200)。 比特信息对应于敏感信息,承诺鲍勃与爱丽丝。 Alice和Bob维护委托一段预定时间的比特信息(S300)。 预定时间对应于爱丽丝和鲍勃之间的收缩任意时期。 爱丽丝公开披露托管给Bob的位信息(S400)的公开步骤。
-
公开(公告)号:KR101208080B1
公开(公告)日:2012-12-05
申请号:KR1020090016917
申请日:2009-02-27
Applicant: 한국전자통신연구원
Abstract: 양자비트위임프로토콜을실행하기위한방법및 시스템을제공한다. 본발명의일 실시예에따른방법은, 비트정보의수신자인제2 주체가먼저양자상태를임의로선택하여비트정보의송신자인제1 주체로전송하는사전작업단계와, 제1 주체가수신된양자상태에대하여소정의유니타리변환을수행함으로써비트정보를양자상태에결합한다음유니타리변환된양자상태를제2 주체에게전송하는비트위임단계와, 수신된유니타리변환된양자상태를소정의기간동안홀딩하는홀딩단계와, 제1 주체가유니타리변환에관한정보를제2 주체에게제공하여위임된비트정보를제2 주체에게알리는공개단계를포함한다. 공개단계는제1 주체가알려준비트정보가비트위임단계에서위임된비트정보와동일한지를검증하는검증과정을포함할수 있는데, 예를들어유니타리변환의역변환을수행하여구한양자상태가사전작업단계에서선택된양자상태와동일한지를확인함으로써검증을할 수있다.
-
公开(公告)号:KR1020110070694A
公开(公告)日:2011-06-24
申请号:KR1020100033400
申请日:2010-04-12
Applicant: 한국전자통신연구원
CPC classification number: H04L63/1416 , H04L9/0852
Abstract: PURPOSE: A user authentication method at multilateral both sides communication and an apparatus thereof are provided to guarantee unconditional security for the attack of a disguised attack person, by generating a new secret key. CONSTITUTION: One user among N users transmits N particles corresponding to N-Partite GHZ state to the users(S100). A both sides communication server judges a disguised attack person among N users, based on a second number of particles and a first error rate(S120). The both sides communication server generates a new secret key using a third number of particles. The both sides communication server controls the replacement of the stored secret key with the new secret key(S130). The both sides communication server computes a second error rate(S110). The both sides communication server refines the error generated during transmission(S140).
Abstract translation: 目的:提供双边通信及其设备的用户认证方法,以保证伪装攻击者的攻击无条件的安全性,方法是生成新的密钥。 构成:N个用户中的一个用户向用户发送对应于N-Partite GHZ状态的N个粒子(S100)。 双方通信服务器根据第二数量的粒子和第一错误率来判断N个用户中的伪装攻击者(S120)。 双方通信服务器使用第三数量的粒子生成新的密钥。 双方通信服务器用新的秘密密钥控制存储的秘密密钥的替换(S130)。 双方通信服务器计算第二个错误率(S110)。 双方通信服务器精简传输过程中产生的错误(S140)。
-
-
-
-
-
-
-
-
-
Search Results
11
records
(took 0.021 seconds)
