KR101793528B1 - Certificateless public key encryption system and receiving terminal - Google Patents

Abstract

)를 이용하여 비밀값을 생성하는 비밀값 설정 모듈 및 상기 공개 상수, 상기 비밀값 및 상기 상태 정보(

)를 이용하여 공개키를 생성하는 공개키 설정 모듈을 포함하고, 상기 송신 단말기는 상기 공개 상수, 상기 수신 단말기의 아이디 및 상기 공개키를 메시지를 암호화하여 암호문을 생성하고, 생성된 암호문을 상기 수신 단말기로 송신한다.A non-certificate public key cryptosystem is disclosed. The public key cryptography system includes a receiving terminal, a transmitting terminal, and a server. The server receives a security constant and generates a master key and a public constant. The setting module exposes the public constant. And a partial private key extraction module for generating the partial private key of the receiving terminal using the master key and transmitting the partial private key to the receiving terminal, wherein the receiving terminal receives the public constant, And status information of the receiving terminal (

A secret value setting module for generating a secret value using the secret value, the secret value, and the status information

The transmitting terminal generates a cipher text by encrypting the message with the public constant, the ID of the receiving terminal, and the public key, and transmits the generated cipher text to the receiving terminal To the terminal.

Description

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a public key cryptosystem,

An embodiment according to the concept of the present invention relates to a non-certificate public key cryptosystem, and in particular, even if a previously used secret value and a decryption key are exposed after a public key is replaced, any information about a current valid decryption key can be obtained Certificate public key cryptosystem and a receiving terminal for ensuring safety by eliminating the public key.

The background of the present invention is as follows.

Public Key Encryption System

In the public key cryptosystem, the public key used for message encryption communication is in an unidentifiable random number format, so that the public key alone does not know who owns the key. Therefore, in order for the message transmission method to be secure, a new medium for authenticating between the public key and the owner is required. The public key cryptosystem authenticates whether the public key is owned by a certificate, which is issued through a trusted third authority. Since the public key is authenticated based on the certificate, the trust of the public key can be guaranteed, but there arises a management problem such as storing, discarding and distributing the certificate. Therefore, ID - based cryptosystem has been developed to solve the problem of public key cryptosystem.

Identity Based Encryption System

In the ID-based cryptosystem, the ID of the user, which is an identifiable string such as an e-mail address or an IP address, becomes a public key, thereby proving ownership of the user's public key. Since there is no need for a separate public key authentication process, there is no certificate management problem of the public key infrastructure. However, since the key generation center generates all the private keys and issues them to the user, There is a key escrow problem that allows you to know the private key. To solve this problem, a non - certificate public key cryptosystem has been developed.

Certificateless Public Key Encryption System

The non - certificate public key cryptosystem is a cryptographic system that uses public key with irregularity and user 's ID together as a public key, and solves the problem of key trust of ID based cryptography without using certificate. In the non-certificate public key cryptosystem, the decryption key computed by using the secret value selected by the user and the partial private key issued by the key generating organization is used to decrypt the message. In this case, the public key having the secret number is a value calculated by using the secret value selected by the user. In this case, even after the public key has been changed even once, the attacker must not be able to obtain any information about the cipher text encrypted with the current public key even if the previous secret value and the decryption key are exposed. This method of ensuring the security of the non - certificate public key cryptosystem is called the secret key and the non - certificate public key cryptosystem which is safe to attack the decryption key.

Bilinear Map

로 갖는 곱셈 군

과

가 있고,

의 생성원(generator)이

라고 가정하자. 다음과 같은 조건을 만족하는 함수

를 겹선형 함수라 한다.A prime number

Multiplication group having

and

There,

The generator of

. Functions that satisfy the following conditions

Is called a folded linear function.

와

에 대해

가 된다.1) bilinearity: any two elements

Wow

About

.

을 만족하는

가 존재한다.2) Non-degeneracy:

Satisfy

Lt; / RTI >

에 대해서

를 효율적으로 계산할 수 있는 알고리즘이 존재한다.3) Computability:

about

There is an algorithm that can efficiently calculate

Decisional Bilinear Diffie-Hellman assumption

로 갖는 군

가 있고 겹선형 함수

가 있을 때

을

의 생성원이라고 가정하자. 이 때, DBDH 문제는 지수 부분의

가 이와 같이

상의 원소이고 집합

가 주어졌을 때,

인지를 결정하는 것이다.A prime number

Group

And a folded linear function

When there is

of

. In this case, the DBDH problem is

Like this

And the set

When given,

Is determined.

는

혹은

에 따라 비트

을 출력하는 알고리즘이다. 이 때, 다항식 시간 안에 의미 있는(non-negligible) 확률로 계산할 수 있는 알고리즘

가 존재하지 않는다면 DBDH 문제는 풀기 어렵다고 정의하며, 알고리즘

가 DBDH 문제를 풀 수 있을 algorithm

The

or

According to the bit

. In this case, an algorithm that can be calculated with a non-negligible probability within a polynomial time

, The DBDH problem is defined as difficult to solve, and the algorithm

Can solve the DBDH problem

는 다음과 같다. Advantage

Is as follows.

The present invention has been made in view of the above problems, and it is an object of the present invention to provide a method and apparatus for encrypting a partial private key by using a public key and a decryption key, A public key cryptographic system and a receiving terminal which can guarantee high safety by preventing the public key from being cached.

)를 이용하여 비밀값을 생성하는 비밀값 설정 모듈 및 상기 공개 상수, 상기 비밀값 및 상기 상태 정보(

)를 이용하여 공개키를 생성하는 공개키 설정 모듈을 포함하고, 상기 송신 단말기는 상기 공개 상수, 상기 수신 단말기의 아이디 및 상기 공개키로 메시지를 암호화하여 암호문을 생성하고, 생성된 암호문을 상기 수신 단말기로 송신한다.The non-certificate public key cryptosystem according to an embodiment of the present invention includes a receiving terminal, a transmitting terminal, and a server, and the server receives a security constant, generates a master key and an exposing constant, And a partial private key extraction module for generating the partial private key of the receiving terminal using the public constant and the master key and transmitting the partial private key to the receiving terminal, An ID of the receiving terminal, and status information of the receiving terminal

A secret value setting module for generating a secret value using the secret value, the secret value, and the status information

The transmitting terminal generates a cipher text by encrypting the message using the public constant, the ID of the receiving terminal, and the public key, and transmits the generated cipher text to the receiving terminal .

)를 이용하여 비밀값을 생성하는 비밀값 설정 모듈, 상기 공개 상수, 서버로부터 수신된 부분 개인키, 및 상기 비밀값을 이용하여 복호화키를 생성하는 복호화키 설정 모듈, 상기 공개 상수, 상기 비밀값 및 상기 상태 정보(

)를 이용하여 공개키를 생성하는 공개키 설정 모듈, 및 상기 공개 상수와 상기 복호화키를 이용하여 상기 암호문을 복호화하는 복호화 모듈을 포함한다.A receiving terminal according to an exemplary embodiment of the present invention may be included in the non-certificate public key cryptosystem, and may include an open constant, an ID of the receiving terminal, and status information of the receiving terminal

A decryption key setting module for generating a decryption key using the decryption key, the partial constant received from the server, and the secret value; And the status information (

), And a decryption module for decrypting the cipher text using the decryption key and the public constant.

In the non-certificate public key cryptosystem according to the embodiment of the present invention, even if the previous user secret value and the decrypted hawk are exposed to a malicious attacker after the public key is replaced, Or decrypt the encrypted ciphertext with the current public key. That is, the attacker can not use this key information to find any meaningful information.

Further, since the state information is updated every time the client generates the secret value and the public key is generated using the updated state information, even if the attacker maliciously exchanges the public key, the state information of the cipher text encrypted with the public key, Since the state information of the key is different, the attacker can not find any information about the cipher text. In addition, since it is designed based on the difficult mathematical problem, the security of the non-certificate cryptography is guaranteed.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS In order to more fully understand the drawings recited in the detailed description of the present invention, a detailed description of each drawing is provided.
FIG. 1 illustrates a non-certificate public key cryptosystem according to an embodiment of the present invention.
2 is a functional block diagram of the server shown in FIG.
3 is a functional block diagram of the receiving terminal shown in FIG.

It is to be understood that the specific structural or functional description of embodiments of the present invention disclosed herein is for illustrative purposes only and is not intended to limit the scope of the inventive concept But may be embodied in many different forms and is not limited to the embodiments set forth herein.

The embodiments according to the concept of the present invention can make various changes and can take various forms, so that the embodiments are illustrated in the drawings and described in detail herein. It should be understood, however, that it is not intended to limit the embodiments according to the concepts of the present invention to the particular forms disclosed, but includes all modifications, equivalents, or alternatives falling within the spirit and scope of the invention.

The terms first, second, etc. may be used to describe various elements, but the elements should not be limited by the terms. The terms may be named for the purpose of distinguishing one element from another, for example, without departing from the scope of the right according to the concept of the present invention, the first element may be referred to as a second element, The component may also be referred to as a first component.

It is to be understood that when an element is referred to as being "connected" or "connected" to another element, it may be directly connected or connected to the other element, . On the other hand, when an element is referred to as being "directly connected" or "directly connected" to another element, it should be understood that there are no other elements in between. Other expressions that describe the relationship between components, such as "between" and "between" or "neighboring to" and "directly adjacent to" should be interpreted as well.

The terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the invention. The singular expressions include plural expressions unless the context clearly dictates otherwise. In this specification, the terms "comprises" or "having" and the like are used to specify that there are features, numbers, steps, operations, elements, parts or combinations thereof described herein, But do not preclude the presence or addition of one or more other features, integers, steps, operations, components, parts, or combinations thereof.

Unless defined otherwise, all terms used herein, including technical or scientific terms, have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. Terms such as those defined in commonly used dictionaries are to be interpreted as having a meaning consistent with the meaning of the context in the relevant art and, unless explicitly defined herein, are to be interpreted as ideal or overly formal Do not.

Before describing embodiments of the present invention in detail with reference to the drawings attached hereto, the algorithm used in the present invention will be described as follows.

The non-certificate cryptosystem according to the present invention includes a setup algorithm, an ExtractPartialPrivateKey algorithm, a SetSecretValue algorithm, a SetDecryptionKey algorithm, a SetPublicKey algorithm, (Encrypt) and decryption algorithm (Decrypt), and each algorithm used is composed as follows.

1. Setup algorithm (Setup)

를 입력받아 마스터키

와 공개 상수(공개 파라미터라고도 함)

를 출력한다. 상기 설정 알고리즘은 서버에 의해 수행되며 설정 단계가 완료되면 상기 서버는 마스터키

를 저장하고 공개 상수

를 공개한다.In the configuration algorithm or configuration phase,

≪ / RTI >

And the disclosure constant (also known as the disclosure parameter)

. The setting algorithm is performed by the server, and when the setting step is completed,

And the open constant

.

인 군

,

, 생성자

, 겹선형 함수

를 선택한다. 또한, 상기 서버는 임의의 난수

와

에 포함되는 임의의 원소

를 선택한다. 결국, 서버에 의해 생성된 마스터키

는

이고, 공개 파라미터

는 다음과 같다.Specifically, the server calculates the number

Phosphorus

,

, Constructor

, Fold linear function

. Also, the server may be a random number

Wow

Any element

. Eventually, the master key generated by the server

The

Lt; / RTI >

Is as follows.

2. Partial private key extraction algorithm (ExtractPartialPrivateKey)

, 마스터키

, 및 사용자(수신자)의 아이디

를 입력받아 부분 개인키

를 출력한다. 상기 부분 개인키 추출 알고리즘은 상기 서버에 의해 각각의 사용자 별로 1회씩 수행될 수 있으며, 생성된 부분 개인키

는 대응하는 사용자(또는 사용자의 단말기)에게 전달된다.In the partial private key extraction algorithm or the partial private key extraction step,

, Master key

, And the identity of the user (recipient)

The partial private key

. The partial private key extraction algorithm may be performed once for each user by the server, and the generated partial private key

(Or the user's terminal).

를 선택하고, 상기 서버에 의해 생성된 부분 개인키

는 다음과 같다.Specifically, the server generates a random number

A partial private key generated by the server,

Is as follows.

3. Set secret value algorithm (SetSecretValue)

와 사용자의 아이디

를 입력받고 상기 사용자의 상태정보

를 이용하여 비밀값

을 출력할 수 있다. 비밀값 설정 알고리즘은 상기 사용자의 단말기인 수신 단말기에 의해 수행될 수 있다.In the secret value setting algorithm or secret value setting step,

And the user's ID

And receives the status information of the user

The secret value

Can be output. The secret value setting algorithm can be performed by the receiving terminal which is the terminal of the user.

를 선택한다. 이때, 난수

는 상기 수신 단말기가 공개키를 생성하는 과정에서 이용될 수 있으며 상기 수신 단말기에 의해 상기 수신 단말기 내에 저장된다. 상태정보

는 임의의 정수, 예컨대 "1"을 초기값으로 갖으며(즉,

), 비밀값

이 생성될 때마다 상기 수신 단말기에 의해 그 값이 갱신될 수 있다(즉,

). 상기 수신 단말기에 의해 생성된 비밀값

는 다음과 같다.Specifically, the receiving terminal transmits a random number

. At this time,

May be used in the process of generating the public key by the receiving terminal and stored in the receiving terminal by the receiving terminal. Status information

Quot; 1 "as an initial value (i.e.,

), Secret value

The value can be updated by the receiving terminal every time it is generated (i.e.,

). The secret value generated by the receiving terminal

Is as follows.

4. Decryption key setting algorithm (SetDecryptionKey)

, 부분 개인키

, 및 비밀값

을 입력받고 상기 사용자의 복호화키

를 출력할 수 있다. 상기 복호화키 설정 알고리즘은 상기 수신 단말기에 의해 수행된다.In the decryption key setting algorithm or the decryption key setting step,

, Partial private key

, And secret value

And the decryption key of the user

Can be output. The decryption key setting algorithm is performed by the receiving terminal.

를 선택하고, 아래 수학식을 연산하여 복호화키

를 생성한다.Specifically, the receiving terminal transmits a random number

And calculates the following equation, and outputs the decryption key

.

는 다음과 같다.The generated decryption key

Is as follows.

과

는 아래와 같이 정의될 수 있다.At this time,

and

Can be defined as follows.

5. Public Key Set Algorithm (SetPublicKey)

와 사용자의 비밀값

을 입력받고 상기 사용자의 상태정보

를 이용하여 공개키

를 출력할 수 있다. 상기 공개키 설정 알고리즘은 수신 단말기에 의해 수행될 수 있다.In the public key establishment algorithm or public key establishment phase,

And the user's secret value

And receives the status information of the user

Using the public key

Can be output. The public key setting algorithm may be performed by the receiving terminal.

는 다음과 같다.Specifically, the public key generated by the receiving terminal

Is as follows.

에 포함된

는 아래 수학식을 이용하여 계산될 수 있다.The public key

Included in

Can be calculated using the following equation.

6. Encryption algorithm (Encrypt)

, 수신자(또는 수신 단말기)의 아이디

, 공개키

, 및 메시지

를 입력받아 암호문

을 출력한다. 상기 암호화 알고리즘은 송신 단말기에 의해 수행될 수 있다.In the encryption algorithm or encryption phase,

, The ID of the receiver (or receiving terminal)

, Public key

, And a message

≪ / RTI >

. The encryption algorithm may be performed by a transmitting terminal.

를 선택하고, 아래 수학식에 의해 정의되는 암호문

을 생성할 수 있다.Specifically, the transmitting terminal transmits random numbers

And a cipher text defined by the following equation

Can be generated.

Decryption algorithm

, 복호화키

, 및 암호문

을 입력받아 메시지

또는 에러 기호

를 출력할 수 있다. 상기 복호화 알고리즘은 수신 단말기에 의해 수행될 수 있으며, 메시지

는 아래 수학식을 이용하여 생성(또는 복호화)될 수 있다.In the decryption algorithm or decryption step,

, Decryption key

, And ciphertext

≪ / RTI >

Or error sign

Can be output. The decryption algorithm may be performed by the receiving terminal,

(Or decoded) using the following equation.

를 구하는 과정으로부터 그 정확성이 입증될 수 있다.The above-mentioned non-certificate encryption technique is a method in which a plaintext message

The accuracy can be proved from the process of obtaining.

FIG. 1 illustrates a non-certificate public key cryptosystem according to an embodiment of the present invention.

Referring to FIG. 1, a non-certificate public key cryptosystem 10 includes a receiving terminal 100, a server 300, and a transmitting terminal 500.

를 수신하고, 비밀값

을 생성하며, 수신된 부분 개인키

와 생성된 비밀값

을 이용하여 복호화키

를 생성하며, 설정된 비밀값

을 이용하여 공개키

를 설정할 수 있다.The receiving terminal 100 receives the partial private key < RTI ID = 0.0 >

And the secret value

And the received partial private key

And the generated secret value

Decryption key

And generates a secret value

Using the public key

Can be set.

을 수신하고, 생성된 복호화키

를 이용하여 암호문

을 복호화할 수 있다.In addition, the receiving terminal 100 receives a cipher text

And outputs the generated decryption key

The ciphertext

Can be decoded.

와 공개 상수

를 생성하고, 생성된 공개 상수

를 공개할 수 있다. 또한, 서버(300)는 사용자(또는 수신 단말기(100))의 아이디

에 대응하는 부분 개인키

를 생성하고 생성된 부분 개인키

를 수신 단말기(100)로 송신할 수 있다.The server 300, which can be named as a non-certificate public key cryptographic server, a non-certificate secret server, a password server, a key generation server, or a key issuance server,

And open constant

And generates the generated public constant

. In addition, the server 300 receives the ID of the user (or the receiving terminal 100)

A partial private key corresponding to

And generates the generated partial private key

To the receiving terminal (100).

를 암호화하고 생성된 암호문

을 수신 단말기(100)로 송신할 수 있다. The transmitting terminal 500 performs an encryption algorithm,

And generates the generated ciphertext

To the receiving terminal (100).

를 선택하고, 아래 수학식에 의해 정의되는 암호문

을 생성할 수 있다.Specifically, the transmitting terminal 500 transmits a random number

And a cipher text defined by the following equation

Can be generated.

은 수신 단말기(100)로 송신될 수 있다.Generated ciphertext

May be transmitted to the receiving terminal (100).

The receiving terminal 100 and / or the transmitting terminal 300 may be a personal computer (PC), a tablet PC, a notebook, a net-book, an e-reader, a personal computer a digital assistant, a portable multimedia player (PMP), an MP3 player, a MP4 player, or a handheld device such as a mobile phone or a smart phone .

2 is a functional block diagram of the server shown in FIG.

Referring to FIGS. 1 and 2, the server 300 includes a configuration module 310 and a partial private key extraction module 330.

를 입력받고 마스터키

와 공개 상수

를 생성하고, 공개 상수

를 공개할 수 있다. The configuration module 310 may perform a configuration algorithm. In other words, the setting module 310 sets the security constant

And a master key

And open constant

Lt; RTI ID = 0.0 >

.

인 군

,

, 생성자

, 겹선형 함수

를 선택한다. 또한, 설정 모듈(310)은 임의의 난수

와

에 포함되는 임의의 원소

를 선택한다. 결국, 설정 모듈(310)에 의해 생성된 마스터키

는

이고, 공개 파라미터

는 다음과 같다.More specifically, the setting module 310 determines whether the number

Phosphorus

,

, Constructor

, Fold linear function

. In addition, the setting module 310 may be a random number

Wow

Any element

. As a result, the master key generated by the setting module 310

The

Lt; / RTI >

Is as follows.

, 마스터키

, 및 사용자의 아이디

를 이용하여 부분 개인키

를 생성하고, 생성된 부분 개인키

를 대응하는 수신 단말기(100)로 송신할 수 있다. The partial private key extraction module 330 may perform a partial private key extraction algorithm. That is, the partial private key extraction module 330 extracts the public constant

, Master key

, And the user's ID

The partial private key

And generates the generated partial private key < RTI ID = 0.0 >

To the corresponding receiving terminal (100).

를 선택하고, 아래 수학식에 의해 정의되는 부분 개인키

를 생성한다.Specifically, the partial private key extraction module 330 extracts a random number

And selects the partial private key < RTI ID = 0.0 >

.

는 수신 단말기(100)로 송신될 수 있다.Generated partial private key

May be transmitted to the receiving terminal 100.

3 is a functional block diagram of the receiving terminal shown in FIG.

1 to 3, the receiving terminal 100 includes a secret value setting module 110, a decryption key setting module 130, a public key setting module 150, and a decryption module 170.

, 사용자의 아이디

, 및 상기 사용자의 상태정보

를 이용하여 비밀값

을 생성할 수 있다.The secret value setting module 110 may execute a secret value setting algorithm. That is, the secret value setting module 110 sets the secret constant

, The user's ID

, And the status information of the user

The secret value

Can be generated.

를 선택한다. 이때, 난수

는 상기 수신 단말기(100)가 공개키를 생성하는 과정에서 이용될 수 있으며 수신 단말기(100)에 의해 수신 단말기(100) 내에 저장된다. 상태정보

는 임의의 정수, 예컨대 "1"을 초기값으로 갖으며(즉,

), 비밀값

이 생성될 때마다 비밀값 설정 모듈(110)에 의해 그 값이 갱신될 수 있다(즉,

). 비밀값 설정 모듈(110)에 의해 생성된 비밀값

는 다음과 같다.Specifically, the secret value setting module 110 sets the secret value

. At this time,

May be used in the process of generating the public key by the receiving terminal 100 and stored in the receiving terminal 100 by the receiving terminal 100. [ Status information

Quot; 1 "as an initial value (i.e.,

), Secret value

The value can be updated by the secret value setting module 110 (that is,

). The secret value generated by the secret value setting module 110

Is as follows.

, 부분 개인키

, 및 비밀값

을 이용하여 사용자(또는 수신 단말기(100))의 복호화키

를 생성할 수 있다.The decryption key setting module 130 may perform a decryption key setting algorithm. That is, the decryption key setting module 130 sets the decryption key

, Partial private key

, And secret value

(Or receiving terminal 100) using the decryption key

Lt; / RTI >

를 선택하고, 아래 수학식을 연산하여 복호화키

를 생성한다.Specifically, the decryption key setting module 130 sets a random number

And calculates the following equation, and outputs the decryption key

.

는 다음과 같다.The generated decryption key

Is as follows.

과

는 아래와 같이 정의될 수 있다.At this time,

and

Can be defined as follows.

와 비밀값

, 및 상태정보

를 이용하여 공개키

를 생성할 수 있다. The public key configuration module 150 may perform a public key configuration algorithm. That is,

And secret value

, And status information

Using the public key

Lt; / RTI >

는 다음과 같다.Specifically, the public key generated by the public key setting module 150

Is as follows.

에 포함된

는 아래 수학식을 이용하여 계산될 수 있다.Public key

Included in

Can be calculated using the following equation.

, 및 복호화키

를 이용하여 암호문

을 복호화함으로써 메시지

를 출력할 수 있다. 메시지

는 아래 수학식을 이용하여 생성(또는 복호화)될 수 있다.The decryption module 170 may perform a decryption algorithm. That is, the decryption module 170 determines

, And decryption key

The ciphertext

Lt; RTI ID = 0.0 >

Can be output. message

(Or decoded) using the following equation.

Each of the configurations of the server 300 and the receiving terminal 100 shown in FIG. 2 and FIG. 3 may be functionally and logically separated, and each configuration may be divided into a separate physical device or a separate code It will be readily apparent to one of ordinary skill in the art to which the present invention pertains.

In this specification, a module may mean a functional and structural combination of hardware for carrying out the technical idea of the present invention and software for driving the hardware. For example, the module may mean a logical unit of a predetermined code and a hardware resource for executing the predetermined code, and does not necessarily mean a physically connected code or a kind of hardware.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is evident that many alternatives, modifications and variations will be apparent to those skilled in the art. Accordingly, the true scope of the present invention should be determined by the technical idea of the appended claims.

100: receiving terminal
110: secret value setting module
130: Decryption key setting module
150: Public key setting module
170: Decryption module
300: server
310: Setting module
330: Partial private key extraction module
500: transmitting terminal

Claims (10)

A non-certificate public key cryptosystem comprising a receiving terminal, a transmitting terminal and a server,
The server comprises:
A setting module for receiving a security constant and generating a master key and an open constant, and disclosing the open constant; And
A partial private key extraction module for generating a partial private key of the receiving terminal using the public constant and the master key and transmitting the partial private key to the receiving terminal,
The receiving terminal,
The disclosure constant, the ID of the receiving terminal, and the status information of the receiving terminal

A secret value setting module for generating a secret value using the secret value; And
The disclosure constant, the secret value, and the status information (

And a public key setting module for generating a public key using the public key,
The transmitting terminal encrypts a message using the public constant, the ID of the receiving terminal, and the public key, transmits the generated ciphertext to the receiving terminal,
The receiving terminal,
A decryption key setting module for generating a decryption key using the public constant, the partial private key, and the secret value; And
And a decryption module for decrypting the cipher text using the decryption key and the public constant,
Wherein the setting module comprises:
The number of stars

Phosphorus (

), Constructor (

), And a folded linear function (

) Is selected,
Any random number (

) And the above

≪ / RTI > (

) Is selected,
The master key (< RTI ID = 0.0 >

) And the open constant < RTI ID = 0.0 > (

),
Equation (1)

ego,
Equation (2)

ego,
The partial private key extraction module may extract random numbers

) And the partial private key < RTI ID = 0.0 > (

),
Equation (3)

ego,
The secret value setting module may generate random numbers

) Is selected,
The secret value (

) Is defined by Equation (4)
Equation (4)

sign,
Non - certificate public key cryptosystem.
delete delete delete delete The method according to claim 1,
Wherein the decryption key setting module comprises:
Any random number (

) Is selected,
≪ / RTI >< RTI ID = 0.0 > (5)

),
Equation (5)

sign,
Non - certificate public key cryptosystem.
The method according to claim 6,
The public key configuration module uses the public key (

),
Equation (6)

sign,
Non - certificate public key cryptosystem.
8. The method of claim 7,
The transmitting terminal may transmit an arbitrary random number (

) Is selected, and the cipher text (

),
Equation (7)

sign,
Non - certificate public key cryptosystem.
9. The method of claim 8,
The decryption module decrypts the cipher text (

),
Equation (8)

sign,
Non - certificate public key cryptosystem.
delete

Images