| CPC H04L 9/0833 (2013.01) [H04L 9/0838 (2013.01)] | 6 Claims |
|
1. A multi-party session key agreement method comprising:
a test session for exchanging a short-term key between parties of 3 to n peers; and
an original session for exchanging a long-term key between the parties who have exchanged the short-term key,
wherein  possess a long-term key pair (a, A), B possess a long-term key pair (b, B), and Ĉ possess a long-term key pair (c, C), and the test session includes the sub-steps of:
(a) activating session s=(Â, i), selecting a short-term private key, calculating X=gfI(rÂ,a,Ω), and sending X to B and Ĉ by Â;
(b) activating session s=(B, i), selecting a short-term private key, and calculating Y=gfR(rB,b,Ω) and KB=FR(fR(rB,b,Ω),b,X,Ω) by B;
(c) activating session s=(Ĉ, i), selecting a short-term private key, and calculating Z=gfR(rĈ,c,Ω) and KĈ=FR(fR(rĈ,c,Ω),c,Y,Ω) by Ĉ;
(d) sending Y to  by B, and sending X and Y to Ĉ by Â;
(e) sending X and Z to B by Ĉ, and sending Y and Z to  by B;
(f) completing the session using session key KB by B after confirming X;
(g) completing the session using session key KĈ by Ĉ after confirming Y;
(h) calculating KÂ=FI(fI(rÂ,a,Ω),a,Y,Ω) by  after confirming Y;
(i) completing the session using session key K by  after confirming Z; and
(j) confirming whether H(session key value+transaction session key tree root value)<TV (Target Value), and conducting the original session step if satisfied, and terminating the session if not satisfied, by Â, B, and Ĉ, respectively,
where Â, B, and Ĉ are party A, B, C respectively, where X, Y, and Z are short-termed public keys of the party A, B, and C respectively, where rÂ, rB, and rĈ are short-term private keys of party A, B, C and respectively, where KÂ, KB, and KĈ are session keys of party A, B, and C respectively, where A, B, and C are long-term public keys of party A, B, and C(A=ga), (B=gb), and (C=gc) respectively, where a, b, are c are long-term private keys of party Â,B, and Ĉ (a∈zp) respectively, where pKÂ, pKB, and pKĈ are agreement public keys of party Â,B, and Ĉ respectively, where sKÂ, sKB, and sKĈ are agreement private keys of party Â,B, and Ĉ respectively, and, where g is a generator.
|