可否認認證協定具有兩個基本特性:指定驗證者以及可否認性。到目 前為止,本年度的計畫正進行研究,讓可否認認證協定能夠允許資料的傳 送方提出證據,證明自己的確傳送過資料的事實,藉以保全自己的權利; 但是對於資料的接收方而言,並沒有相對應的保護方式存在,此種狀況可 能會讓接收方遭受不白之冤。舉例來說,若資料的傳送方的確送出了資 料,但卻將送出資料的行為誣賴給接收方,那麼根據可否認認證協定的可 否認性,外人無從判斷究竟誰才是真正的傳送方,甚至會懷疑此份資料是 由接收方所偽造的。由上述的例子可以瞭解,除了保護資料傳送方的權利 之外,藉由接收方也能提出證據來證明自己的確沒有傳送過資料的方式, 來達到保護資料接收方的權利也是很重要的。因此,計畫的研究目標為提 出具有匿名公平保護功能之可否認認證協定,來保護資料傳送方以及接收 方的權利,並且保護資料收送雙方的隱私。 Intended receiver and deniability properties are two basic properties satisfied by deniable authentication protocols. But, the deniability property causes the damage on the sender’s right. Recently, in our current project, a deniable authentication protocol with sender protection will be proposed to protect the right of the real sender. In other words, the sender can prove that he/she really sent the message to guard against circumvent by some receivers. Even though the deniable authentication protocol provides the sender protection, the honest receiver is still suffer the circumvent risk due to the senders’ deniability. If the sender sent a deniable authenticated message to the innocent receiver and claimed that the message was generated by receivers, then the receiver has nothing to convince the others that he/she is innocent. To provide fair and identity privacy protection both for senders and receivers, the goal of this project is to propose deniable authentication protocols with anonymous fair protection.
