|
|
计算机应用研究 2012
Efficient anonymous attestation from attribute-based ring signature
|
Abstract:
Remote attestation is an important problem needed to be resolved in trusted computing. This paper proposed an elegant, highly-efficient and anonymous remote attestation protocol. It combined binary attestation with property-based attestation and adopted the thought of ring signature. It needed neither property certificates nor AIK certificates. It concurrently achieved the identity attestation and the integrity attestation for platforms, by resorting to an off-line trusted third party, mechanisms of binding and sealing in trusted computing and attribute-based ring signature from bilinear maps. The analysis and experiment show the protocol satisfies the properties of non-forgeability, anonymity of platform identity, protection of configuration privacy and resistance to collusion, and has fine performance. Compared with the existing typical attestation protocol from bilinear maps, the size of the signature decreases by 79. 73%, and the pairing operations also decrease by 50%. The protocol has perfectly resolved the trouble problems of remote attestation and efficiency in trusted computing.
