【作者】 刘景伟；

【导师】 寇卫东；

【作者基本信息】 西安电子科技大学 ， 通信与信息系统， 2007， 博士

【摘要】 电子商务是基于Internet的双方或多方之间进行的有形商品或者无形服务的交换，所以公平交换协议在电子商务中有着广泛的应用。本篇论文主要研究了电子商务中的公平交换协议以及由此构造的公平电子支付方案，并致力于弱化公平交换协议过程中的信任基础。我们首先从具有第三方的公平交换协议入手，将通常使用的可信第三方弱化为半可信第三方，接着进一步将三方公平交换协议简化成两方公平交换协议，同时也将方案的信任基础进一步降低。最后，我们给出了基于ID的无可信PKG的签名方案，使得无信任基础或者弱信任基础下的两方公平交换成为可能。本文得到如下主要结果：(1)给出了两种新的公平电子支付方案。在第一个方案中，我们引入了一个半可信第三方(S-TTP)来构建一个公平的电子商务交易环境。在第二个方案中，我们对第一个方案进行了改进，通过逆向使用盲签名方案，又构造出了一种新的公平电子支付协议，减少了交易过程中的通信量；(2)给出了公平交换签名方案(Fair Exchange Signature Scheme—FESS)的基本模型，该模型可以使参与双方以一种公平的方式交换数字签名，它可以基于现在已有的大多数签名方案来实现。(3)给出了以Schnorr签名为基础的FESS实现方案，并且给出了该方案在随机预言机模型下的安全证明；(4)提出了一种低计算复杂度的简单半盲签名方案模型，由这个模型构造了两种简单半盲签名。并且，我们给出了在随机预言机模型下的详细的安全证明；(5)通过逆向使用简单半盲签名方案，我们构造出了一种简单而且高效的公平电子支付协议。在该协议中，不涉及任何可信第三方(TTP)，两个参与者以一种简单的方式达到在电子商务中公平交易中目的；(6)提出了基于ID的无可信PKG签名方案的详细定义。通过利用Gap Diffie-Hellman(GDH)群，构造了一种新的基于ID的无可信PKG签名方案。证明了在随机预言机模型下，该方案能够抵抗适应性选择消息攻击和ID攻击下的存在性伪造；(7)对RosettaNet中所用到的安全策略以及网格中的安全问题进行了讨论，并在此基础上对RosettaNet的，尤其是在网格基础设施中的安全性进行了分析和改进。更多还原

【Abstract】 Electronic Commerce is the Internet-based exchange of tangible merchandize or in-tangible service between two or multi parts, so the fair exchange protocols have beenwidely used in electronic commerce.This dissertation investigate the fair exchange protocols and fair e-payment schemesfrom these protocols in electronic commerce, and focus attention on weakening the trustbases of the fair exchange protocols. We first discuss the fair exchange protocols with thethird party, but, in which a semi-trusted third party is introduced instead of the trustedthird party. Second, we simplify three parties to two parties farther, so the trust base isalso weakened in these fair exchange protocols. At last, we propose the ID-based signaturewithout trusted PKG, which makes it possible that fair exchange protocols between twoparties with no trust or weak trust base.The author obtains main results as follows:(1) Two new fair e-payment scheme are presented. In the first scheme, a semi-trustedthird party is introduced to provide a fair commerce environment. In the secondscheme, we improve the first scheme and, by converse using blind signature, presenta new fair e-payment scheme for electronic commerce, which simplified the commu-nication of the business process;(2) The basic model of Fair Exchange Signature Scheme is presented, which allows twoplayers to exchange digital signatures in a fair way and has various implementationson most of the existing signature schemes;(3) An Implementation of FESS from Schnorr signature is presented. Moreover, thesecurity proof is given under Random Oracle Model.(4) A low-computation model of simple partially blind signature is presented, fromwhich we raise two new simple partially blind signatures. The security proof is alsogiven under Random Oracle Model.(5) By converse using simple partially blind signature, we present a simple and effi-cient fair e-payment scheme. In the protocol, without any trusted third party, twoparticipants achieve the goals of fair payment with each other in a simple way ine-commerce business process. (6) We introduce the exact concept of ID-based signature without trusted Private KeyGenerater(PKG). Using Gap Diffie-Hellman (GDH) groups, we construct an newefficient ID-based signature scheme without trusted PKG. The scheme is proved tobe secure against existential forgery on adaptively chosen message and ID attack.(7) We discuss the security strategy of the RosettaNet and the security issues of theGrid. And then analyze and improve the security of RosettaNet, particularly in theGrid environment.更多还原