中文摘要：

现有的虚拟企业信任交互方案,均不能抵抗盟主与盟员及盟员与盟员间的合谋攻击,也不具备盟员间出现信任纠纷时的身份追查功能。为此,提出了一个身份可追查的抗合谋攻击广义虚拟企业信任交互方案。新方案通过在证书签发过程中引入签名成员的固有公私钥信息实现抗合谋攻击,通过构建身份跟踪数据库和y值吊销列表实现责任追查,通过部分签名验证实现错误定位。分析表明,新方案不仅具备已有方案的安全特性,还具备抗合谋攻击和身份可追查功能,且能灵活适应虚拟企业的不同组织模式,为虚拟企业盟员间的信任交互提供了安全可行的解决方案。

英文摘要：

There were several preliminary interactive authentication schemes for Virtual Enterprise （VE）, but none of them could resist conspiracy attacks or trace the members＇ identities which participated in a Virtual Certificate Authority （VCA） signature＇s generation. To solve these problems, a novel conspiracy attack immune generalized interactive authentication scheme for VE with traceability was proposed. In this new scheme, the conspiracy attack immune property was obtained by introducing signers＇ inherent secret keys＇ and public keys＇ information into VCA signature, and the traceability was realized by constructing identity tracking database and y-value＇s revocation list. Furthermore, the new scheme could locate errors by partial signature＇s verification function. Analysis shows that the new scheme was more secure and was suitable for various VE＇s organization forms. It provided a feasible solution for VE＇s interactive authentication.