Research On An Efficient And Provably Short Group Signature DAA Protocol Based On Standard Model

In recent years, Trusted Computing technology, considered as the ultimate solution to protect the endpoint security, has gradually gotten researchers' interests. Especially on the privacy protection, Trusted Computing Group proposes Privacy-CA and DAA successively to attest the platform identity anonymously. Focusing on the DAA protocol, this thesis analyzes, improves and applies the protocol.Firstly, we analyze the security problems of typical DAA protocols, including BCC, BCL and CMP. Then, aiming at the drawbacks of existed protocols thinking over the security only in RO Model, we propose to apply Stardard Model into DAA protocol. The researches show that the security of the protocol in Standard Model is more closed to the security requirement in real environment.Secondly, we deisgn a DAA protocol based on Short Group Signature in Standard Model. Based on the analysis of several existed typical Group Signature schemes, we suggest adopting Short Group Signature based on Standard Model into DAA protocol. Because of its short signature, hign efficiency and provable security in Standard Model, the security of DAA is increased while its efficiency is also guranteed. On the basis of Fiat-Shamir heuristic theory, we design the signature of knowledge and realize the transformation from non-interactive zero knowledge proof to signature of knowledge.Thirdly, we discuss the security of the proposed DAA protocol. We analyze the security characteristics it fulfills and realize its security proof in Stardard Model based on 1-MOMSDH complexity assumption and "Ideal System/Real System" security-proof model. The analysis indicates that the protocol which bears equivalent efficiency to the existed BCL protocol more improves the security and expands the applicable scope of the existed DAA protocols.At last, we discuss the application of the proposed protocol in Remote Attestation System. We design a Remote Attestation System based on platform integrity, define the main functions of each module and construct system's pivotal modules. Based on the TCG technical standards and the current mature technologies, we give a complete realization of the system on Linux platform, and verify the validity of the protocol.