Vietebooks

Nguyn Hong Cng

chng 8 phn phi v tho thun v kho 8.1 Gii thiu: Chng ta thy rng, h thng m kho cng khai c u im hn h thng m kho ring ch khng cn c knh an ton trao i kho mt. Tuy nhin, ng tic l hu ht cc h thng m kho cng khai u chm hn h m kho ring, chng hn nh DES. V th thc t cc h m kho ring thng c dng m cc bc in di. Nhng khi chng ta li tr v vn trao i kho mt. Trong chng ny, chng ta s tho lun vi bin php thit lp cc kho mt. Ta phn bit gia phn phi kho v tho thun v kho. Phn phi kho c nh ngha l c ch mt nhm chn kho mt v sau truyn n n cc nhm khc. Cn tho thun kho l giao thc hai nhm (hoc nhiu hn) lin kt vi nhau cng thit lp mt kho mt bng cch lin lc trn knh cng khai. Trong s tho thun kho, gi tr kho c xc nh nh hm ca cc u vo do c hai nhm cung cp. Gi s, ta c mt mng khng an ton gm n ngi s dng. Trong mt s s , ta c ngi u quyn c tn nhim (TA) p ng nhng vic nh xc minh danh tnh ca ngi s dng, chn v gi kho n ngi s dng ... Do mng khng an ton nn cn c bo v trc cc i phng. i phng (Oscar) c th l ngi b ng, c ngha l hnh ng ca anh ta ch hn ch mc nghe trm bc in truyn trn knh. Song mt khc, anh ta c th l ngi ch ng. Mt i phng ch ng c th lm nhiu hnh vi xu chng hn: 1. Thay i bc in m anh ta nhn thy l ang c truyn trn mng. 2. Ct bc in dng li sau ny. 3. C gng gi dng lm nhng ngi s dng khc nhau trn mng. Mc tiu ca i phng ch ng c th l mt trong nhng ci nu sau y: 1. La U v V chp nhn kho khng hp l nh kho hp l (kho khng hp l c th l kho c ht hn s dng, hoc kho do i phng chn). 2. Lm U hoc V tin rng, h c th trao i kho vi ngi kia khi h khng c kho. Mc tiu ca phn phi kho v giao thc tho thun kho l, ti thi im kt thc th tc, hai nhm u c cng kho K song khng nhm khc no bit c (tr kh nng TA). Chc chn, vic thit k giao thc c kiu an ton ny kh khn hn nhiu trc i phng ch ng. Trc ht ta xem xt tng v s phn phi kho trc trong mc 8.2. Vi mi cp ngi s dng {U,V}, TA chn mt kho ngu nhin KU,V=KV,U v truyn ngoi di n U v V trn knh an ton. (Ngha l, vic truyn kho khng xy ra trn mng do mng khng an ton ). Bin php ny gi l an ton khng iu kin song n i hi mt knh an ton gia TA v nhng ngi s
Trang 1

Vietebooks

Nguyn Hong Cng

dng trn mng. Tuy nhin iu quan trng hn l mi ngi phi lu n -1 kho v TA cn truyn tng cng (n ) kho mt cch an ton (i khi bi ton ny c 2 2 gi l bi ton n ). Thm ch vi mt s mng tng i nh, gi gii quyt vn ny l kh t v nh vy gii php hon ton khng thc t. Trong phn 8.2.1, chng ta tho lun mt s phn phi trc kho an ton khng iu kin kh th v do Blom a ra. S cho php gim lng thng tin mt m ngi s dng cn ct gi trn mng. Mc 8.2.2 cng a ra mt s phn phi trc kho an ton v mt tnh ton da trn bi ton logarithm ri rc. Mt bin php thc t hn l TA phn phi kho trc tip. Trong s nh vy, TA lm vic nh mt ngi ch kho (key server). TA chia kho mt KU cho mi ngi s dng U trn mng. Khi U mun lin lc vi V, c ta yu cu TA cung cp kho cho phin lm vic (session key). TA to ra kho session K v gi n di dng m ho cho U v V gii m. H thng m Kerboros m t trong mc 8.3 l da trn bin php ny. Nu nh cm thy vn phn phi kho thng qua TA khng thc t hoc khng mong mun th bin php chung l dng giao thc tho thun kho. Trong giao thc tho thun kho, U v V kt hp chn mt kho bng cch lin lc vi nhau trn knh cng khai. tng ng ch ny do Martin v Diffie a ra c lp vi Merkle. y m t vi giao thc tho thun kho ph thng hn. Giao thc u tin ca Diffie v Hellman c ci tin ng ph vi cc i phng tch cc c nu trong phn 8.4.1. Hai giao thc ng quan tm na cng c xem xt: s MTI nn trong 8.4.2 v s Girault nu trong mc 8.4.3 8.2 Phn phi kho trc theo phng php c bn, TA to ra kho v a mi khoa cho duy 2 nht mt cp ngi s dng trong mng c n ngi s dng. Nh nu trn, ta cn mt knh an ton gia TA v mi ngi s dng truyn i cc kho ny. y l mt ci tin quan trng v s knh an ton cn thit gim t 2 xung cn n. Song nu n ln, gii php ny cng khng thc t c v lng thng tin cn truyn i an ton ln lng thng tin m mi ngi s dng phi ct gi an ton (ngha l cc kho mt ca n-1 ngi s dng khc). nh vy, iu cn quan tm l c gng gim c lng thng tin cn truyn i v ct gi trong khi vn cho php mi cp ngi s dng U v V c kh nng tnh ton kho mt KU,V. Mt s u vit hn tho mn yu cu ny l s phn phi kho trc ca Blom. 8.2.1 S Blom.
n n

Trang 2

Vietebooks

Nguyn Hong Cng

Nh trn, gi thit rng c mt mng gm n ngi s dng. thun tin, gi s rng cc kho c chn trn trng s hu hn ZP, p n l s nguyn t. Cho k l s nguyn, 1 < k < n -2. Gi tr k hn ch kch thc ln nht m s vn duy tr c mt . Trong s Blom, TA s truyn i k +1 phn t ca ZP cho mi ngi s dng trn knh an ton (so vi n -1 trong s phn phi trc c bn). Mi cp ngi s dng U v V s c kh nng tnh kho KU,V = KV,U nh trc y. iu kin an ton nh sau: tp bt k gm nhiu nht k ngi s dng khng lin kt t {U, V} phi khng c kh nng xc nh bt k thng tin no v KU,V. (ch rng, ta ang xt s an ton khng iu kin). Trc ht, xt trng hp c bit ca s Blom khi k =1. y TA s truyn i 2 phn t ca ZP cho mi ngi s dng trn knh an ton v ngi s dng ring W s khng th xc nh c bt k thng tin no v KU,V nu WU,V. S Blom c a ra trong hnh 8.1. Ta s minh ho s Blom vi k = 1 trong v d sau: Hnh 8.1: S phn phi kho ca Blom (k =1) 1. S nguyn t p cng khai, cn vi mi ngi s dng U, phn t rU ZP l cng khai. Phn t rU phi khc bit. 2. Ta chn 3 phn t ngu nhin a, b, c ZP (khng cn khc bit) v thit lp a thc

Trang 3

Vietebooks

Nguyn Hong Cng

8.3.Kerboros trong cc phng php phn phi trc kho xem xt trong cc phn trc , mi cp ngi s dng cn tnh mt kho c nh. Nu dng cng mt kho trong mt thi gian di s d b tn thng, v th ngi ta thng thch dng phng php trc tip trong kho ca phin lam vic mi ch c to ra mi khi hai ngi s dng mun lin lc vi nhau (gi l tnh ti mi ca kho). Nu dng phn phi kho trc tip th ngi s dng mng khng cn phi lu cc kho khi mun lin lc vi nhng ngi s dng khc (Tuy nhin mi ngi u c chia s kho vi TA). Kho ca phin lm vic (kha session) s c truyn i theo yu cu ca TA. l s p ng ca TA m bo kho ti. Korobos l h thng dch v kha ph cp da trn m kho ring. Trong phn ny s a ra mt tng quan v giao thc pht hnh kho session trong Korobos. Mi ngi s dng U s chia s kho DES mt KU cho TA. Trong phin bn gn y nht ca Korobos (version 5), mi thng bo cn truyn c m ho theo ch xch khi (CBC) nh m t trong 3.4.1 Nh trong mc 8.2.2, ID(U) ch thng tin nh danh cng khai cho U. Khi c yu cu kho session gi n TA, TA s to ra mt kho session mi ngu nhin K. Cng vy, TA s ghi li thi gian khi c yu cu T v ch ra thi gian (thi gian tn ti) L K c hiu lc. iu c ngha l kho K ch c hiu lc t T n T+L. Tt c thng tin ny u c m ho v c truynng dn n U v V. Trc khi i n cc chi tit hn na, ta s a ra giao thc trong hnh 8.4. thng tin c truyn i trong giao thc c minh ho nh sau: Hnh 8.4: Truyn kho session trong Korobos. 1. Ta s gii thch iu sp sa xy ra trong cc bc ca giao thc. Mc d khng c chng minh hnh thc rng Kerobos l an ton trc i th tch cc, song t nht ta cng c th a ra l do no v cc c im ca giao thc. Nh nu trn, TA to ra K, T v L trong bc 2. Trong bc 3, thng tin ny cng vi ID(V) c m ho bng kho KU (c U v TA chia s) to lp m1. C hai bc in m ho ny c gi n U. U c th dng kho ca mnh gii m m1, nhn c K, T v L. C s xc minh xem thi gian hin ti c nm trong khong T n T + L hay khng. C cng kim tra kho session K c pht ra cho lin lc gia c v V bng cch xc minh thng tin ID(V) gii m t m2. Tip theo, U s lm tr thi gian m2 v m3 n V. Cng nh vy, U s dng kho session K mi m T v ID(U) v gi kt qu m3 n V. Khi V nhn c m3 v m3 t U, V gii m m2 thu c T, K, L v ID(U). Khi , anh ta s dng kho session mi K gii m m3 v xc minh xem T v

Trang 4

Vietebooks

Nguyn Hong Cng

ID(U) nhn c t m2 v m3 c nh nhau khng. iu ny m bo cho V rng kho session c m bng m2 cng l kho dng m m3. Khi V dng K m T+1 v gi kt qu m4 tr v U. Khi U nhn c m4, c dng K gii m n v xc minh xem kt qu c bng T+1 khng. Cng on ny m bo cho U rng kho session K c truyn thnh cng n V v K c dng to ra m4. iu quan trng cn lu l cc chc nng khc nhau ca cc thng bo dng trong giao thc, m1 v m2 dng bo m an ton trong vic truyn kho session. Cn m3 v m4 dng khng nh kho, ngha l cho php U v V c th thuyt phc nhau rng h s hu cng mt kho session K. Trong hu ht cc s phn phi kho, s khng nh kho oc coi nh mt c tnh. Thng th n c thc hin tng t kiu Kerobos, U dng K m ID(U) v T dng m trong m2. Tng t, V dng K m T+1. Mc ch ca thi gian h thng T v thi hn L ngn i phng tch cc khi lu thng bo c nhm ti truyn li sau ny (y c gi l tn cng kiu chi li - relay attack). Phng php ny hiu qu v cc kho khng c chp nhn l hp l mt khi chng qu hn. Mt trong hn ch ca Kerobos l mi ngi s dng trong mng u phi c ng h ng b vi nhau v cn c thi gian hin ti xc nh kho session K cho trc l hp l. Thc t, rt kh c c s ng b hon ho nn phi cho php c khong thay i no v thi gian. Hnh 8.5: Trao i kho Diffie - Hellman

8.4 Trao i kho Diffie - Hellman Nu ta khng mun dng dch v kho trc tip th buc phi dng giao thc tho thun kho trao kho mt. Trc ht, giao thc tho thun kho ni ting nht l giao thc trao i kho Diffie - Hellman. Gi s rng, p l s nguyn t, l phn t nguyn thu ca ZP v chng u l nhng tham s cng khai. Giao thc trao i kho Diffie - Hellman c a ra trong mc 8.5. Cui giao thc, U v V tnh ra cng mt kho: Giao thc ny cng tng t vi s phn phi kho trc ca Diffie Hellman m t trc y. S khc nhau ch cc s m aU, aV ca U v V u c chn li mi ln thc hin giao thc thay v c nh. Cng nh vy, trong giao thc ny, c U ln V u c m bo kho ti v kho session ph thuc vo c hai s m ngu nhin aU v aV. 8.4.1 Giao thc trm ti trm. Trao i kho Diffie - Hellman c xut nh s sau:

Trang 5

Vietebooks

Nguyn Hong Cng

(S ) ng tic l giao thc d b tn thng trc i phng tch cc - nhng ngi s dng tn cng k xm nhp vo gia cuc (Intuder - in -middle attack). l tnh tit ca v The Lucy show, trong nhn vt Vivian Vance ang dng ba ti vi ngi bn, cn Lucille Ball ang trn di bn. Vivian v ngi bn ca c nm tay nhau di bn. Lucy c trnh b pht hin nm tay ca c hai ngi, cn hai ngi vn ngh rng h ang nm tay nhau. Cuc tn cng kiu k xm nhp gia cuc trn giao thc trao i kho Diffie - Hellman cng nh vy. W s chn bt c cc bc in trao i gia U v V v thay th bng cc bc in ca anh ta nh s di y: (s ) Ti thi im cui ca giao thc, U thit lp thc s kho mt a a cng vi W, cn V thit lp kho mt a a vi W. Khi U c gii m bc in gi cho V, W cng c kh nng gii m n song V khng th, (tng t tnh hung nm tay nhau nu V gi bc in cho U). R rng, iu c bn i vi U v V l bo m rng, h ang trao i kho vi nhau m khng c W. Trc khi trao i kho, U v V c th thc hin nhng giao thc tch bch thit lp danh tnh cho nhau, v d, nh dng mt trong cc s nh danh m t trong chng 9. Tuy nhin, iu ny c th a n vic khng bo v c trc tn cng k xm nhp gia cuc nu W vn duy tr mt cch n gin s tn cng th ng cho n khi U v V chng minh danh tnh ca h cho nhau. V th giao thc tho thun kho t n cn xc thc c cc danh tnh ca nhng ngi tham gia cng lc kho c thit lp. Giao thc nh vy c gi l giao thc tho thun kho xc thc. Ta s m t mt giao thc tho thun kho l ci tin ca s trao i kho Diffie - Hellman. Giao thc gi thit s nguyn t p v phn t nguyn thu l cng khai v n dng vi cc du xc nhn. Mi ngi s dng U s c mt s ch k vi thun ton xc minh verU. TA cng c s ch k vi thut ton xc minh cng khai verTA. Mi ngi s dng U c du xc nhn: C(U) = (ID(U), verU, sigTA(ID(U), verU)) Trong ID(U) l thng tin nh danh cho U Hnh 8.6 Giao thc trm ti trm n gin.
' U V ' U V

Tho thun kho xc thc do Diffie - Hellman, van Oorschot v Viener a ra c gi l giao thc trm n trm (vit tt l STS). Giao thc a ra trn hnh 8.6 n gin hn mt cht: n c th c dng c th ph hp vi cc giao thc ca ISO 9798-3. Thng tin c trao i trong s STS n gin ho (gm c cc du xc nhn) c minh ho nh sau:
Trang 6

Vietebooks

Nguyn Hong Cng

(s ) Ta hy xem cch bo v ny trc tn cng k xm nhp gia cuc. Nh trc y, W s chn bt a v thay n bng
U

8.4.2. Cc giao thc tho thun kho MTI Matsumoto, Takashima v Imai xy dng vi giao thc tho thun kho ng ch bng cch bin i giao thc trao i kho ca Diffie - Hellman. Cc giao thc ny c gi l MTI. Giao thc ny khng i hi U v V phi tnh bt k ch k no. Chng l cc giao thc hai ln v ch c hai ln truyn thng tin ring bit (mt t U n V v mt t V n U). Tri li, giao thc STS c gi l giao thc ba ln. Hnh 8.7: Giao thc tho thun kho MTI. Ta a ra mt trong cc giao thc MIT. Vic thit lp chng ging nh giao thc phn phi kho trc Diffie Hellman. Gi thit s nguyn t p v phn t nguyn thu l cng khai. Mi ngi s dng U u c chui ID(U), s m mt aU (0 aU p-2) v gi tr cng khai tng ng: TA c s ch k vi thut ton xc minh (cng khai) verTA v thut ton k mt sigTA. Mi ngi s dng U s c du xc nhn: C(U) = (ID(U), bU, sigTA(ID(U), bU)). Trong bU c thit lp nh trn. Giao thc tho thun kho MTI c a ra trn hnh 8.7. Cui giao thc U v V u tnh cng mt kho: K= Di y l v d minh ho giao thc ny: V d 8.3. Gi s p = 27803, = 5. Gi s U chn aU = 21131: sau c ta tnh: bU = 521131 mod 27803 = 21420. c ng trn giy xc nhn ca c. Cng nh vy, V chn aV = 17555. Sau anh ta s tnh: bV =517555 mod 27803 = 17100. c dt trn giy xc nhn ca anh. By gi gi s rng U chn rU =169, sau c gi gi tr: sU = 5169 mod 27803 = 6268.
Trang 7

Vietebooks

Nguyn Hong Cng

n V. Lc gi s V chn rV = 23456, sau anh ta gi gi tr: sU = 523456 mod 27803 = 26759 n U. By gi U tnh kho: KU,V = = 626817555 2142023456 mod 27803 = 21600. Nh vy, U v V tnh cng mt kha. Thng tin c truyn trong giao thc c miu t nh sau: (s ) Hy xt mt ca s . Khng kh khn nhn thy rng, mt ca giao thc MTI trc tn cng th ng ng bng bi ton Diffie Hellman. Cng nh nhiu giao thc, vic chng minh tnh an ton trc tn cng ch ng khng phi n gin, chng ta s khng th chng minh bt c iu g v iu ny v t hn ch n mt s i s khng hnh thc. y l mt mi nguy him c th xem xt: Khi khng dng ch k trong sut qu trnh thc hin giao thc, c th xut hin tnh hung khng c s bo v no trc tn cng xm nhp vo im gia. Qu thc, c kh nng W c th chn cc gi tr m U v V gi cho nhau. Di y m t mt tnh hung quan trng c th xut hin: (s ) Trong trng hp ny, U v V s tnh cc kho khc nhau: U tnh K= Trong khi V tnh: K= Tuy nhin, W khng th tnh ton ra kho ca U v V v chng i hi phi bit s m mt aU v aV tng ng. Thm ch ngay c khi U v V tnh ra cc kho khc nhau (m d nhin l khng dng chng) th W cng khng th tnh c kho no trong chng. Ni cch khc, c U ln V u c bo m rng, ngi s dng khc trn mng ch c th tnh c kho m h tnh c. Tnh cht ny i khi c gi l xc thc kho n (implicit key authentication) 8.4.3 Tho thun kho dng cc kho t xc nhn Trong phn ny, ta m t mt phng php tho thun kho do chnh Girault a ra khng cn du xc nhn. Gi tr ca kho cng khai v danh tnh ngi s hu n s ngm xc thc ln nhau. S Girault kt hp cc tnh cht ca RSA v cc logarithm ri rc. Gi s n = pq, p =p1+1, q = 2ql+1, cn p, q, p1v q1 u l cc s nguyn t ln. Nhm nhn Zn* l ng cu vi Zp*Zq*. Bc cc i ca phn t bt k trong Zn* bi vy l bi chung nh nht ca p - 1 v q - 1, hoc 2p1q1. Cho l phn t c

Trang 8

Vietebooks

Nguyn Hong Cng

bc 2p1q1. Khi nhm cyclic ca Zn* do to ra l thit lp thch hp ca bi ton logarithm ri rc. Trong s Girault, ch TA bit c phn tch nhn t ca n. Cc gi tr n v l cng khai, song p, q, p1 v q1 u l mt. TA chn s m m cng khai RSA, k hiu l e. S m gii m tng ng b mt l d (nh rn d = e-1mod (n)). Mi ngi s dng U c mt chui ID(U) nh trong cc s trc y. U nhn c kho t xc nhn cng khai pU t TA nh nu trn hnh 8.8. Nhn xt rng, U cn TA gip to pU. Cng ch rng: bU = pUe + ID(U) mod n Hnh 8.8: Nhn kho t xc nhn t TA 1. U chn s m mt aU v tnh: bU = 2. U a aU v bU cho TA 3. TA tnh: pU = (bU - ID(U))d mod n 4. TA a pU cho U C th tnh t pU v ID(U) bng thng tin cng khai c sn. Giao thc tho thun kho Girault c a ra trn hnh 8.9. Thng tin truyn i trong giao thc nh sau: U ID(U), pU, r mod n ID(V), pV, r mod n
U V

Cui giao thc, U v V tnh kho:

K = rU aV + rV aU mod n

Di y l mt v d v trao i kho trong s Girault. V d 8.4: Gi s p =839, q = 863. Khi n = 724057 v (n) = 722356. Phn t =5 c bc 2p1q1 = (n)/2. Gi s TA chn d = 125777 lm s m gii m RSA, khi e = 84453. Gi s U c ID(U) = 500021 v aU = 111899. Khi bU = 488889 v pU =650704. Cng gi thit rng V c ID(V) = 500022 v aU = 123456. Khi bV = 111692 v pV = 683556. By gi U v V mun trao i kho. Gi s U chn rU =56381, ngha l sU=171007. Tip theo, gi s V chn rV = 356935, ngha l sV =320688. Khi c U ln V s tnh cng mt kho K = 42869. Hnh 8.9: Giao thc tho thun kho ca Girault 1. U chn rU ngu nhin v tnh su = 2. U gi ID(U), pU v sU cho V. 3. V chn rV ngu nhin v tnh
Trang 9

Vietebooks

Nguyn Hong Cng

sV = r mod n 4. V gi ID(V), pV v sV cho U 5. U tnh: a e K = sV ( pV + ID(V )) r mod n V V tnh: a e K = sU ( pU + ID(U )) r mod n Xt cch cc kho t xc thc bo v chng li mt kiu tn cng. V cc gi tr bU, pU v ID(U) khng c TA k nn khng c cch no ai xc minh trc tip tnh xc thc ca chng. Gi thit thng tin ny b W - ngi mun gi danh U - gi mo (tc l khng hp tc vi TA to ra n). Nu W bt u bng ID(U) v gi tr gi bU. Khi khng c cch no c ta tnh c s m aU tng ng vi bU nu bi ton logarithm ri rc kh gii. Khng c aU, W khng th tnh c kho. Tnh hung tng t nu W hot ng nh k xm nhp gia cuc. W s c th ngn c U v V tnh ra kho chung, song W khng th ng thi thc hin cc tnh ton ca U v V. Nh vy, s cho kh nng xc thc ngm nh giao thc MTI. Bn c c th t hi ti sao U c yu cu cung cp cc gi tr aU cho TA. Qu thc, TA c th tnh pU trc tip t bU m khng cn bit aU song iu quan trng y l TA s c thuyt phc rng, U bit aU trc khi TA tnh pU cho U. im ny c minh ho bng cch ch ra s c th b tn tng nu TA pht ba bi cc kho cng khai pU cho nhng ngi s dng m khng kim tra trc ht xem h c s hu cc aU tng ng vi cc bU ca h hay khng. Gi s W chn mt gi tr gi aU v tnh gi tr tng ng:
V
U U V v

' bU = aU mod n
'

y l cch anh ta c th xc nh kho cng khai tng ng pU =(bU - ID(U))d mod n W s tnh: pW = bW - ID(U) + ID(W) v sau a bW v ID(W) cho TA. Gi s TA pht ra kho cng khai pW =(bW - ID(W))d (mod n) cho W. Nh dng yu t: bW - ID(W) bU - ID(U) (mod n) c th suy ra rng: pW = pU. Cui cng, gi s U v V thc hin giao thc cn W thay th thng tin nh sau: ID(U), pU, r mod n ID(U), pU, r mod n U ID(V), pV, r mod n V ID(V), pV, r mod n W
u v
' U

Trang 10

Vietebooks

Nguyn Hong Cng

Xt thy V s tnh kho:

K ' = rU av + rv aU mod n
' '

trong khi U s tnh kho

K = rU av + rv aU mod n

W c th tnh K nh sau:
e K ' = s vaU ( pV + ID(V )) rU mod n
' '

Nh vy, W v V chia s nhau mt kho, song V ngh anh ta ang chia kho vi U. Nh vy, W s c th gii m c bc in m V gi cho U. 8.5 Cc ch v ti liu tham kho. Blom a ra s phn phi kho ca ng trong [BL85]. Cc bi bo c tnh cht tng qut ho cng c trong mt s bi bo khc ca ng [BDSHKVY93] v ca Beimel v Chor [BC94]. Diffie v Hellman a ra thut ton trao i kho ca h trong [DH76]. tng v trao i kho cng c Merkle a ra c lp trong [ME78]. Nhng kin v trao i kho xc thc c ly t Diffie, Van Oorschot v Wiener [DVW92]. Phin bn th 5 v Kerobos c m t trong [KN93]. Cn bi bo gn y nht v Kerobos xem trong [SC94] ca Schiller. Cc giao thc ca Matsumoto, Takashima v Imai c th tm thy trong [MTI86]. Phn phi kho t xc nhn c gii thiu trong Girault [GIR91]. S m ng a ra thc s l s phn phi kho trc: Bn ci tin s tho thun kho da trn [RV94]. Hai tng quan gn y v phn phi kho v tho thun kho l ca Rueppel v Van Oorschot [RV94] v Van Tilburg [VT93]. Bi tp 8.1 Gi s s Blom vi k =1 c thc hin cho tp 4 ngi s dng, U, V, W v X. Gi thit p = 7873, rU = 2365, rV =6648, rW = 1837 cn rX = 2186. Cc a thc mt g nh sau: gU(x) = 6018 + 6351x gV(x) = 3749 + 7121x gW(x) = 7601 + 7802x gX(x) = 635 + 6828x a/ Tnh kho cho mi cp ngi s dng, xc minh rng mi cp nhn c mt kho chung (ngha l KU,V = KV,U v.v...) b/ Ch ra cch W v X cng nhau tnh kho KV,U 8.2 Gi thit s Blom vi k = 2 c thc hin cho tp 5 ngi s dng U, V, W, X v Y. Gi thit p = 97, rU = 14, rV = 38, rW = 92, rX =69 cn rY = 70. Cc a thc mt g nh sau: gU(x) = 15 + 15x + 2x2
Trang 11

Vietebooks

Nguyn Hong Cng

gV(x) = 95 + 77x + 83x2 gW(x) = 88 + 32x + 18x2 gX(x) = 62 + 91x + 59x2 gY(x) = 10 + 82x + 52x2 a/ Ch ra cch U v V tnh kho KU,V = KV,U b/ Ch ra cch W, X v Y cng nhau tnh kho KU,V Hnh 8.10: Bi ton MTI Bi ton: I =(p, , , , , ) trong p l s nguyn t, Z*P l phn t nguyn thu cn , , , Z*P Mc tiu: Tnh log log mod p 8.3. Gi thit U v V tin hnh trao i kho theo s Diffie - Hellman vi p = 27001 v = 101. Gi s U chn aU = 21768 v V chn aV = 9898. Hy ch ra cc tnh ton m U v V thc hin v xc nh kho m h tnh c. 8.4. Gi thit U v V tin hnh giao thc MTI vi p = 30113, = 52. Gi s U c aU = 12385. Hy ch ra cc tnh ton m c U v V thc hin v xc nh kho m h tnh c. 8.5. Nu i phng th ng c gng tnh K do U v V xy dng bng giao thc MTI (hnh 8.10), khi anh ta phi i mt vi bi ton MTI. Chng minh rng thut ton bt k gii c bi ton MTI th cng c th gii c bi ton Diffie - Hellman v ngc li. 8.6. Xt s nh danh Girault trong p = 167, q = 179 v v th n = 29893. Gi s = 2 v e = 11101. a/ Tnh d. b/ Cho trc ID(U) = 10021 v aU = 9843, tnh bU v pU. Cho trc ID(V) = 10022 v aV = 7692, hy tnh bV v pV c/ Ch ta cch c th tnh bU t pU v ID(V) bng cch dng s m cng khai e. Tng t, ch ra cch tnh bV t pV v ID(V). d/ Gi s U chn ra rU = 15556 v V chn ra rV = 6420. Hy tnh sU v sV v ch ra cch U v V tnh kho chung ca h.

Trang 12