中文摘要：

近期实践表明密码系统容易受到各种攻击而泄漏密钥等相关秘密信息, 泄漏的秘密信息破坏了以前的已证明安全的方案, 因此设计抗泄漏的密码学方案是当前密码研究领域的一个热点研究方向。设计一个基于证书的加密方案, 总的设计思想是使用一个基于证书的哈希证明系统, 这个证明系统包含一个密钥封装算法, 用这个密钥封装算法结合一个提取器去加密一个对称加密所用的密钥, 那么得到的加密方案就是可以抵抗熵泄漏并且是安全的。对方案的安全性分析和抗泄漏性能分析, 表明本方案在抵抗一定量的密钥泄漏和熵泄漏时可以保持安全性。

英文摘要：

Some attacks which can get some key information from the cryptosystem break the security of the entire cryptosystem. How to design secure cryptosystems is getting more and more attention of the researchers in cryptography community. The paper presented an encryption scheme which was based on certificate-based encryption. It designed a certificate-based hash proof system which contained a key encapsulation algorithm. Then it used this key encapsulation algorithm which was combined with an extractor to encrypt a symmetric encryption key. The scheme was resilient to entropy and secret key leakage. It slso gare the proof of security and analysis of the capability resilient to entropy and secret key leakage.