CN103414559B

CN103414559B - A kind of identity identifying method of based on class IBE system under cloud computing environment

Info

Publication number: CN103414559B
Application number: CN201310188994.XA
Authority: CN
Inventors: 江枚元; 凌捷; 柳毅; 钟奇; 郭圣昌
Original assignee: GuangZhou ZhongChangKangDa Information Technology Co Ltd; Guangdong University of Technology
Current assignee: GuangZhou ZhongChangKangDa Information Technology Co Ltd; Guangdong University of Technology
Priority date: 2013-05-20
Filing date: 2013-05-20
Publication date: 2016-08-10
Anticipated expiration: 2033-05-20
Also published as: CN103414559A

Abstract

The invention discloses the identity identifying method based on class IBE system under a kind of cloud computing environment, including: user side obtains identity information and the password code of registration user；User side carries out systematic parameter initialization；The parameters such as log-on data and signature message are sent to cloud server terminal；Signature message is verified by cloud server terminal；The log-on message that checking receives；Cloud server terminal generates summary info according to log-on data；Obtain encrypted cipher text after summary info is carried out integrated treatment, and encrypted cipher text is sent to user side；After user side receives encrypted cipher text, it is decrypted process and checking.Present invention, avoiding the safety problem that key escrow, key distribution etc. bring, there is high reliability, and in verification process, have employed two-way signature authentication mode be authenticated, avoid the leak caused due to unilateral authentication, improve safety, and fast response time, bandwidth availability ratio is high, can be widely used in and carries out authentication under cloud computing environment.

Description

A kind of identity identifying method of based on class IBE system under cloud computing environment

Technical field

The present invention relates to a kind of identity identifying method, under a kind of cloud computing environment based on The identity identifying method of class IBE system.

Background technology

Traditional IBE system the most important thing is PKG (Private Key Generator), i.e. Private key generates center, and PKG is after receiving the identity information of user, according to the identity of user Information uses master key to be that user produces the key including public private key pair accordingly, and by credible Private key is transmitted to user by channel.The identity identifying method of this pattern, private key for user is by Tripartite mechanism produces and carries out forwarding, and result in the safety of key distribution and trustship and trusts and ask Topic, thus key management becomes the most thorny issue.And under cloud computing environment, when user is led to Cross user side and cloud server terminal when carrying out data interaction, according to the authentication side of this pattern Method, need to introduce third party's trust authority, will bring huge authentication, key distribution and close The problems such as key trustship, improve the complexity of cloud computing process, also increase proof procedure simultaneously Traffic overhead, affect efficiency and the quality of cloud computing, and, the storage to key data And management also brings insecurity.

Summary of the invention

In order to solve above-mentioned technical problem, it is an object of the invention to provide a kind of cloud computing environment Under efficient, high reliability and the identity identifying method based on class IBE system of safety.

The technical solution adopted for the present invention to solve the technical problems is:

A kind of identity identifying method of based on class IBE system under cloud computing environment, including:

S1, user side obtain the identity information M of registration user_idAnd password code password, And after password code is carried out Hash hash operations, it is thus achieved that hashed password password Pwd；

S2, user side carry out systematic parameter initialization, obtain registering user master key S and being System parameter T, and then generate the first PKI EID_UWith the first private key d_eid；

S3, will registration user log-on message M_kCarry out Hash hash operations, generate first close DK wanted by digest_s, and then coupling system parameter T and the first private key d_eidAfter generating signature message DK, By log-on data M_reg, the first PKI EID_U, first ciphertext summary DK_sWith signature message DK It is sent to cloud server terminal；

Signature message DK is verified by S4, cloud server terminal, if being verified, then continues to hold Row step S5, otherwise terminates；

S5, to the log-on message M received_kAfter carrying out Hash hash operations, checking obtains Whether result is equal to the first ciphertext summary DK_s, the most then continue executing with step S6, otherwise tie Bundle；

S6, cloud server terminal are according to log-on data M_regGenerate the first encryption parameter RU_pubWith second Private key RU_PE, and produce one for the identification code λ that this registration user is carried out identity, Then to the first encryption parameter RU_pubAfter carrying out Hash hash operations with identification code λ, it is thus achieved that pluck Want information D；

S7, use the first encryption parameter RU_pubWith the second private key RU_PESummary info D is carried out Obtain the second summary ciphertext DS after encryption, and then use the first PKI EID_UClose to the second summary Literary composition DS, the first encryption parameter RU_pubAfter being encrypted with identification code λ, obtain encrypted cipher text FS, And encrypted cipher text FS is sent to user side；

After S8, user side receive encrypted cipher text FS, use the first private key d_eidTo encrypted cipher text FS Being decrypted, reduction obtains the second summary ciphertext DS, the first encryption parameter RU_pubAnd identification code λ, then uses the first encryption parameter RU_pubWith the first PKI EID_UTo the second summary ciphertext DS After being decrypted, obtain summary info D；

S9, user side are to the first encryption parameter RU_pubHash hash operations is carried out with identification code λ After, whether the result that checking obtains is equal to summary info D, the most then certification is successful；

Described log-on message M_kIncluding identity information M_idWith hashed password password Pwd, described note Volumes is according to M_regIncluding identity information M_id, hashed password password Pwd and systematic parameter T.

Further, described step S2, including:

S21, one feature of acquisition are the finite field Fp of prime number p, and select on finite field Fp Take field element a, b, make field element a, b meet the equation of elliptic curve E (Fp):

y³=x²+ a x+b (modp), wherein 4 a³+27·b²≠0(modp)；

S22, on elliptic curve E (Fp), choose a basic point G, and be calculated basic point G Rank q, and then be calculated two q rank group G of G point respectively₁And G₂, G₁And G₂Full Be enough to lower bilinear map condition:

G₁×G₁→G₂；

S23, the rank #E (Fp) using following formula to calculate elliptic curve E (Fp) remove in the rank q of basic point G The business h obtained:

H=#E (F_p)/q

Wherein, business h meets h≤4, and #E (Fp), p, q meet following condition:

\{\begin{matrix} # E (Fp) &NotEqual; p \\ # p^{t} &NotEqual; 1 (\mod q) \\ p = 2 \mod 3 \\ p = 6 q - 1 \end{matrix}

In above formula, t is constant, and 1≤t ＜ 20；

S24, generate the first random number S and meetThen S is the master key of registration user, And calculate the second encryption parameter: P_pub=S G, and then choose 4 hash functions H, Q, H₁ And Q₁:

H : F_{p}^{2} &RightArrow; {0,1}^{n},

Q : {0,1}^{n} &RightArrow; F_{p}^{2},

H₁: { 0,1}ⁿ× { 0,1}ⁿ→F_q,

Q₁: { 0,1}ⁿ→ { 0,1}ⁿ,

Wherein,Be finite group andN is natural number；

S25, can get systematic parameter T according to following formula and be:

T=(p, a, b, G, p_pub, q, h, H, Q, H₁, Q₁):

Can get message space M is M={0,1} simultaneouslyⁿ, cryptogram space C is C=G₁× { 0,1}ⁿ；

S26, according to identity information M_idGenerate the first PKI EID_U, and then by the first PKI EID_U The point E being mapped on elliptic curve E (Fp)_p, and it is calculated the first PKI d_eid: d_eid=s E_p。

Further, described step S3, including:

S31, according to following formula will registration user log-on message M_kCarry out Hash hash operations, raw Become the first ciphertext summary DK_s:

DK_s=Hash (M_k＜ M_id, Pwd ＞):

S32, choosing an integer k, k meets condition: 0 ＜ k ＜ n；

S33, according to following formula calculate β, if the result obtained is β=0, then return step S32, Otherwise perform step S34:

\{\begin{matrix} kG = (x_{1}, y_{1}) \\ β = x_{1} \mod n \end{matrix};

S34, according to below equation calculate ω, if the result obtained is ω=0, then return step S32, on the contrary perform step S35:

\{\begin{matrix} K^{*} = k^{- 1} \mod n \\ ω = K^{*} {{DK}_{s} + d_{eid}} \mod n \end{matrix};

S35, obtain the message DK=(β, ω) that signs, and then by log-on data M_reg, the first PKI EID_U, first ciphertext summary DK_sIt is sent to cloud server terminal with signature message DK.

Further, described step S4, including:

Whether S41, the message DK that judges to sign meet following condition:

\{\begin{matrix} β > 0 \\ ω < n \end{matrix},

The most then continue executing with step S42, otherwise terminate；

S42, according to following equation calculate w:

\{\begin{matrix} u = ω^{- 1} \mod n \\ μ_{1} = ({DK}_{s} u) \mod n \\ μ_{2} = (βu) \mod n \\ μ_{1} G + μ_{2} {EID}_{U} = (x_{0}, y_{0}) \\ w = x_{0} \mod n \end{matrix}

S43, judge that w whether equal to β, is the most then verified, continues executing with step S5, Otherwise terminate.

Further, described step S6, including:

S61, cloud server terminal choose the second random number R_cMaster as this registration user's interactive authentication After key s ', following formula is used to combine log-on data M_regIn systematic parameter T generate first encryption Parameter RU_pub: RU_pub=R_c·G；

S62, by the first PKI EID_UThe point EID being mapped on elliptic curve E (Fp)_pAfter, It is calculated the second private key RU according to following formula_PE: RU_pE=R_c·EID_p；

S63, cloud server terminal produce one for the mark that this registration user carries out identity Code λ, then according to following formula to the first encryption parameter RU_pubHash hash is carried out with identification code λ After computing, it is thus achieved that summary info D:

D=Hash (RU_pub, λ).

Further, described step S7, including:

S71, use the first encryption parameter RU according to following formula_pubWith the second private key RU_PETo summary letter Cease and after D is encrypted, obtain the second summary ciphertext DS:

DS=EC (D, r, RU_pub,RU_pE)

Wherein, r=H₁(σ, D), and σ is the first random train；

S72, use the first PKI EID according to following formula_UTo the second summary ciphertext DS, the first encryption Parameter RU_pubAfter being encrypted with identification code λ, after obtaining encrypted cipher text FS, and will encrypt close Literary composition FS is sent to user side:

FS=EC (DS, RU_pub, λ, EID_U, R, P_pub)

Wherein, R=H₁(π, DS, RU_pub, λ), π is the second random train, P_pubFor systematic parameter T In the second encryption parameter.

Further, described step S8, including:

After S81, user side receive encrypted cipher text FS, use the first private key d according to following formula_eidRight Encrypted cipher text FS is decrypted, and reduction obtains the second summary ciphertext DS, the first encryption parameter RU_pubWith identification code λ: (DS, RU_pub, λ) and=DC (P_pub, d_eid, FS)；

S82, use the first encryption parameter RU according to following formula_pubWith the first PKI EID_UPluck second After wanting ciphertext DS to be decrypted, obtain summary info D:D=DC (RU_pub, DS, EID_U)。

The invention has the beneficial effects as follows: under a kind of cloud computing environment of the present invention based on class IBE The identity identifying method of system, it is not necessary to third party's trust authority such as PKG, uses user side Direct and cloud server terminal carries out the mode of communication and carries out authentication, reduces authentication to cloud The complexity that calculating process is brought, reduces expense, it is to avoid key escrow, key distribution etc. The safety problem brought, has high reliability.And in verification process, have employed two-way signature Authentication mode is authenticated, it is to avoid the leak that causes due to unilateral authentication, improves safety, And fast response time, bandwidth availability ratio is high.

Detailed description of the invention

The invention provides the authentication based on class IBE system under a kind of cloud computing environment Method, including:

It is further used as preferred embodiment, described step S2, including:

y³=x²+ a x+b (modp), wherein 4 a³+27·b²≠0(modp)；

G₁×G₁→G₂；

H=#E (F_p)/q

Wherein, business h meets h≤4, and #E (Fp), p, q meet following condition:

\{\begin{matrix} # E (Fp) &NotEqual; p \\ # p^{t} &NotEqual; 1 (\mod q) \\ p = 2 \mod 3 \\ p = 6 q - 1 \end{matrix}

In above formula, t is constant, and 1≤t < 20；

H : F_{p}^{2} &RightArrow; {0,1}^{n},

Q : {0,1}^{n} &RightArrow; F_{p}^{2},

H₁: { 0,1}ⁿ× { 0,1}ⁿ→F_q,

Q₁: { 0,1}ⁿ→ { 0,1}ⁿ,

Wherein,Be a finite group andN is natural number；

S25, can get systematic parameter T according to following formula and be:

T=(p, a, b, G, p_pub, q, h, H, Q, H₁, Q₁)；

It is further used as preferred embodiment, described step S3, including:

DK_S=Hash (M_k<M_id, Pwd >)；

S32, choosing an integer k, k meets condition: 0 ＜ k ＜ n；

\{\begin{matrix} kG = (x_{1}, y_{1}) \\ β = x_{1} \mod n \end{matrix};

\{\begin{matrix} K * = k^{- 1} \mod n \\ ω = K * {{DK}_{S} + d_{eid}} \mod n \end{matrix};

It is further used as preferred embodiment, described step S4, including:

Whether S41, the message DK that judges to sign meet following condition:

\{\begin{matrix} β > 0 \\ ω < n \end{matrix},

The most then continue executing with step S42, otherwise terminate；

S42, according to following equation calculate w:

\{\begin{matrix} u = ω^{- 1} \mod n \\ μ_{1} = ({DK}_{S} u) \mod n \\ μ_{2} = (βu) \mod n \\ μ_{1} G + μ_{2} EI D_{U} = (x_{0}, y_{0}) \\ w = x_{0} \mod n \end{matrix}

It is further used as preferred embodiment, described step S6, including:

D=Hash (RU_pub, λ).

It is further used as preferred embodiment, described step S7, including:

DS=EC (D, r, RU_pub, RU_pE)

Wherein, r=H₁(σ, D), and σ is the first random train；

FS=EC (DS, RU_pub, λ, EID_U, R, P_pub)

It is further used as preferred embodiment, described step S8, including:

One specific embodiment of the present invention is as follows:

S1, user side obtain the identity information M of registration user_idAnd password code password, And after password code is carried out Hash hash operations, it is thus achieved that hashed password password Pwd； Pwd=Hash (password).

S2, user side carry out systematic parameter initialization, obtain registering user master key S and being System parameter T, and then generate the first PKI EID_UWith the first private key d_eid:

y³=x²+ a x+b (modp), wherein 4 a³+27·b²≠0(modp)；

G₁×G₁→G₂；

G point coordinates is: G=(x_G, y_G)；

H=#E (F_p)/q

Wherein, business h meets h≤4, and #E (Fp), p, q meet following condition:

\{\begin{matrix} # E (Fp) &NotEqual; p \\ # p^{t} &NotEqual; 1 (\mod q) \\ p = 2 \mod 3 \\ p = 6 q - 1 \end{matrix}

In above formula, t is constant, and 1≤t < 20；

Formula p=2mod3 represents that p is equal to 2 to the result of 3 modulus, being correlated with at elliptic curve In computing, modulo operator number is placed on formula and finally locates, and the application is also adopted by this form, Such as, preceding formula 4 a³+27·b²≠ 0 (modp) represents (4 a³+27·b²) to p modulus Result is not equal to 0；

S24, generate the first random number S and meetThen S is the master key of registration user, And calculate the second encryption parameter: P_pud=S G, and then choose 4 hash functions H, Q, H₁ And Q₁:

H : F_{p}^{2} &RightArrow; {0,1}^{n},

Q : {0,1}^{n} &RightArrow; F_{p}^{2},

H₁: { 0,1}ⁿ× { 0,1}ⁿ→F_q,

Q₁: { 0,1}ⁿ→ { 0,1}ⁿ,

Wherein,For random number field,Be a finite group andN is nature Number；

S25, can get systematic parameter T according to following formula and be:

T=(p, a, b, G, p_pub, q, h, H, Q, H₁, Q₁):

During in message space M and cryptogram space C proof procedure, user side needs to use Between variable, be used for carrying out encryption and decryption computing, be not described in detail here；

Identity information M_idIncluding the registration E-mail address of user, identification card number, phone number The attribute informations such as code, phone number, user name, directly can choose one in above attribute information Individual as the first PKI EID_U。

S3, will registration user log-on message M_kCarry out Hash hash operations, generate first close DK wanted by digest_s, and then coupling system parameter T and the first private key d_eidAfter generating signature message DK, By log-on data M_reg, the first PKI EID_U, first ciphertext summary DK_sWith signature message DK It is sent to cloud server terminal:

DK_s=Hash (M_k<M_id, Pwd >):

S32, choosing an integer k, k meets condition: 0 < k < n；

\{\begin{matrix} kG = (x_{1}, y_{1}) \\ β = x_{1} \mod n \end{matrix};

\{\begin{matrix} K * = k^{- 1} \mod n \\ ω = K * {{DK}_{s} + d_{eid}} \mod n \end{matrix};

In above formula, K* is the intermediate variable during calculating.

Signature message DK is verified by S4, cloud server terminal, if being verified, then continues to hold Row step S5, otherwise terminates:

Whether S41, the message DK that judges to sign meet following condition:

\{\begin{matrix} β > 0 \\ ω < n \end{matrix},

The most then continue executing with step S42, otherwise terminate；

S42, according to following equation calculate w:

\{\begin{matrix} u = ω^{- 1} \mod n \\ μ_{1} = ({DK}_{S} u) \mod n \\ μ_{2} = (βu) \mod n \\ μ_{1} G + μ_{2} {EID}_{U} = (x_{0}, y_{0}) \\ w = x_{0} \mod n \end{matrix}

In above formula, u, μ₁, μ₂And w is the intermediate variable of calculating process.

Here, the signature message DK that first user side is sent by cloud server terminal verifies, if It is verified, then proves that the message such as this signature message DK that user side sends belongs to this registration and uses Family, therefore continues executing with next step.

S5, to the log-on message M received_kAfter carrying out Hash hash operations, checking obtains Whether result is equal to the first ciphertext summary Dk_s, the most then continue executing with step S6, otherwise tie Bundle；Here, the log-on message M of checking registration user_kAfter true, cloud server terminal allows user The operations such as the access of end, if the log-on message M of checking registration user_kThe most true, then refuse to use The operation requests of family end.

S6, cloud server terminal are according to log-on data M_regGenerate the first encryption parameter RU_pubWith second Private key RU_PE, and produce one for the identification code λ that this registration user is carried out identity, Then to the first encryption parameter RU_pubAfter carrying out Hash hash operations with identification code λ, it is thus achieved that pluck Want information D:

D=Hash(RU_pub, λ).

Step S4, S5 ensure that the user side operating cloud server terminal is legal.And In order to ensure that user side is not cheated by non-cloud server terminal and carries out associative operation, it is right that user side also needs Cloud server terminal is verified, as described in step S7～S9.

S7, use the first encryption parameter RU_pubWith the second private key RU_pESummary info D is carried out Obtain the second summary ciphertext DS after encryption, and then use the first PKI EID_UClose to the second summary Literary composition DS, the first encryption parameter RU_pubAfter being encrypted with identification code λ, obtain encrypted cipher text FS, And encrypted cipher text FS is sent to user side:

DS=EC(D,r,RU_pub,RU_pE)

Wherein, r=H₁(σ, D), and σ is the first random train；

FS=EC(DS,RU_pub, λ, EID_U, R, P_pub)

Wherein, R is intermediate variable and R=H₁(π, DS, RU_pub, λ), π is the second random train, P_pubFor the second encryption parameter in systematic parameter T, same, EC represents and is encrypted fortune Calculate, the most conventional method can be used to be encrypted, the most not the detailed calculation to cryptographic calculation Method is described.

After S8, user side receive encrypted cipher text FS, use the first private key d_eidTo encrypted cipher text FS Being decrypted, reduction obtains the second summary ciphertext DS, the first encryption parameter RU_pubAnd identification code λ, then uses the first encryption parameter RU_pubWith the first PKI EID_UTo the second summary ciphertext DS After being decrypted, obtain summary info D:

S82, use the first encryption parameter RU according to following formula_pubWith the first PKI EID_UPluck second After wanting ciphertext DS to be decrypted, obtain summary info D:D=DC (RU_pub, DS, EID_U)。DC Representative is decrypted computing, and the most conventional method can be used to be decrypted, the most not to solution The detailed algorithm of close computing is described.

S9, user side are to the first encryption parameter RU_pubHash hash operations is carried out with identification code λ After, the result Hash (RU that checking obtains_pub, λ) whether equal to summary info D, the most then certification Success, then demonstrate the legitimacy of cloud server terminal, it is therefore prevented that cloud server terminal identity is counterfeit.

First encryption parameter RU_pubWith the second encryption parameter P_pubIt is in systematic parameter T and can answer The parameter being used in encryption or decryption process.

Log-on message M described herein_kIncluding identity information M_idWith hashed password password Pwd:M_k=<M_id, Pwd >, described log-on data M_regIncluding identity information M_id, hash mouth Make password Pwd and systematic parameter T:M_reg=< M_id, Pwd, T >.

The present invention need not third party's trust authority such as PKG, uses user side directly and cloud clothes Business end carries out the mode of communication and carries out authentication, reduces authentication to cloud computing process band The complexity come, reduces expense, it is to avoid the safety that key escrow, key distribution etc. bring Problem.First private key d_eidIt is mainly used in authentication and examination & verification, is intended for user side and logs in cloud clothes Certification use during business end, after certification terminates, does not the most recycle the first private key d_eidOperate, no The problem that user side authority is excessive can be caused.

The present invention have employed elliptic curve in authentication procedures, discrete according to elliptic curve Property feature, this identity identifying method can be resisted and pretend to be attack.And, the present invention recognizes at user side Card and cloud server terminal verification process have employed random number, Replay Attack can well be prevented. Meanwhile, two-way signature authentication mode is make use of to be authenticated user side and cloud server terminal, user The first private key d is used during signature_eid, cloud server terminal uses the first PKI EID accordingly_UTest Card, it is ensured that the legitimacy of the user side conducted interviews.When cloud server terminal verifies the use conducted interviews After the legitimacy of family end, use the first encryption parameter RU_pubCriticize and the second private key RU_PETo user side The information sent is signed, the first PKI EID that recycling user side sends_USend after encryption Being authenticated to user side, this method achieves the bidirectional safe of user side and cloud server terminal and recognizes Card, it is to avoid the leak that causes due to unilateral authentication, improves safety.

This method make use of elliptic curve in verification process, although elliptic curve cryptography meter Calculation amount is relatively large, but relative to other public key system algorithms, in the feelings that key length is equal Under condition, its safety is higher, thus under conditions of meeting same security intensity, this method meter Calculation amount is the most less.And owing to this method is provided without third party's trust authority, thus agreement is tied Structure is simple, it is not necessary to key agreement, distribution etc. operate, user side and cloud server terminal direct interaction Information, decreases and asks and the consumption that communicates of response, and communication mode makes response speed end to end Faster, network bandwidth utilization factor is higher for degree.

It is above the preferably enforcement of the present invention is illustrated, but the invention is not Being limited to described embodiment, those of ordinary skill in the art are in the premise without prejudice to spirit of the present invention The most also can make all equivalent variations or replacement, modification or the replacement of these equivalents are all contained in In the application claim limited range.

Claims

1. the identity identifying method based on class IBE system under cloud computing environment, its feature exists In, including:

Body based on class IBE system under a kind of cloud computing environment the most according to claim 1 Identity authentication method, it is characterised in that described step S2, including:

y³=x²+ a x+b (modp), wherein 4 a³+27·b²≠ 0 (modp), x, y represent respectively Abscissa and vertical coordinate；

G₁×G₁→G₂；

S23, employing following formula calculate the rank #E (Fp) the rank q divided by basic point G of elliptic curve E (Fp) The business h obtained:

H=#E (F_p)/q

Wherein, business h meets h≤4, and #E (Fp), p, q meet following condition:

\{\begin{matrix} # E (F p) &NotEqual; p \\ # p^{t} &NotEqual; 1 (\mod q) \\ p = 2 \mod 3 \\ p = 6 q - 1 \end{matrix}

In above formula, t is constant, and 1≤t < 20；

H : F_{p}^{2} &RightArrow; {0, 1}^{n},

Q : {0, 1}^{n} &RightArrow; F_{p}^{2},

H₁:{0,1}ⁿ×{0,1}ⁿ→F_q,

Q₁:{0,1}ⁿ→{0,1}ⁿ,

Wherein,For random number field,Be a finite group andN is nature Number；

S25, can get systematic parameter T according to following formula and be:

T=(p, a, b, G, p_pub,q,h,H,Q,H₁,Q₁)；

Can get message space M is M={0,1} simultaneouslyⁿ, cryptogram space C is C=G₁×{0,1}ⁿ；

S26, according to identity information M_idGenerate the first PKI EID_U, and then by the first PKI EID_U The point E being mapped on elliptic curve E (Fp)_p, and it is calculated the first PKI d_eid: d_eid=s E_p, wherein, s represents mapping coefficient.

Body based on class IBE system under a kind of cloud computing environment the most according to claim 2 Identity authentication method, it is characterised in that described step S3, including:

DK_S=Hash (M_k<M_id,Pwd>)；

S32, choosing an integer k, k meets condition: 0 < k < n；

\{\begin{matrix} k G = (x_{1}, y_{1}) \\ β = x_{1} \mod n \end{matrix};

\{\begin{matrix} K * = k^{- 1} \mod n \\ ω = K * {D K_{S} + d_{e i d}} \mod n \end{matrix};

Body based on class IBE system under a kind of cloud computing environment the most according to claim 3 Identity authentication method, it is characterised in that described step S4, including:

Whether S41, the message DK that judges to sign meet following condition:

\{\begin{matrix} β > 0 \\ ω < n \end{matrix},

The most then continue executing with step S42, otherwise terminate；

S42, according to following equation calculate w:

\{\begin{matrix} u = ω^{- 1} \mod n \\ μ_{1} = ({DK}_{S} u) \mod n \\ μ_{2} = (β u) \mod n \\ μ_{1} G + μ_{2} {EID}_{U} = (x_{0}, y_{0}) \\ w = x_{0} \mod n \end{matrix}

Body based on class IBE system under a kind of cloud computing environment the most according to claim 4 Identity authentication method, it is characterised in that described step S6, including:

S61, cloud server terminal choose the second random number R_cMaster as this registration user's interactive authentication After key S', following formula is used to combine log-on data M_regIn systematic parameter T generate first encryption Parameter RU_pub: RU_pub=R_c·G；

D=Hash (RU_pub,λ)。

Body based on class IBE system under a kind of cloud computing environment the most according to claim 5 Identity authentication method, it is characterised in that described step S7, including:

DS=EC (D, r, RU_pub,RU_pE)

Wherein, r=H₁(σ, D), and σ is the first random train；

FS=EC (DS, RU_pub,λ,EID_U,R,P_pub)

Wherein, R=H₁(π,DS,RU_pub, λ), π is the second random train, P_pubFor systematic parameter T In the second encryption parameter, EC represent be encrypted computing.

Body based on class IBE system under a kind of cloud computing environment the most according to claim 6 Identity authentication method, it is characterised in that described step S8, including:

After S81, user side receive encrypted cipher text FS, use the first private key d according to following formula_eidRight Encrypted cipher text FS is decrypted, and reduction obtains the second summary ciphertext DS, the first encryption parameter RU_pubWith identification code λ: (DS, RU_pub, λ) and=DC (P_pub,d_eid,FS)；

S82, use the first encryption parameter RU according to following formula_pubWith the first PKI EID_UPluck second After wanting ciphertext DS to be decrypted, obtain summary info D:D=DC (RU_pub,DS,EID_U)；

DC represents and is decrypted computing.