异构无线网络可控匿名漫游认证协议

doi:10.3969/j.issn.0372-2112.2016.05.015

电子学报 ›› 2016, Vol. 44 ›› Issue (5): 1117-1123.DOI: 10.3969/j.issn.0372-2112.2016.05.015

异构无线网络可控匿名漫游认证协议

周彦伟^1,2,3, 杨波^1,2,3, 张文政²

1. 陕西师范大学计算机科学学院, 陕西西安 710062;
2. 保密通信重点实验室, 四川成都 610041;
3. 中国科学院信息工程研究所信息安全国家重点实验室, 北京 100093

收稿日期:2014-09-23 修回日期:2014-11-23 出版日期:2016-05-25
- 通讯作者:
- 杨波
- 作者简介:
- 周彦伟 男,1986年生于甘肃通渭.工程师,陕西师范大学计算机科学学院博士生.研究方向为无线通信技术、匿名通信技术、密码学.E-mail:zhouyanwei1986@163.com
- 基金资助:
- 国家自然科学基金 (No.61572303,No.61272436,No.61402275,No.61303092); 保密通信重点实验室基金 (No.9140C110206140C11050); 中国科学院信息工程研究所信息安全国家重点实验室开放课题 (No.2015-MS-10); 陕西省自然科学基金 (No.2014JQ8309); 中央高校基本科研业务费专项资金 (No.GK201504016); 陕西师范大学优秀博士论文项目 (No.X2014YB01)

Controllable and Anonymous Roaming Protocol for Heterogeneous Wireless Network

ZHOU Yan-wei^1,2,3, YANG Bo^1,2,3, ZHANG Wen-zheng²

1. School of Computer Science, Shaanxi Normal University, Xi'an, Shaanxi 710062, China;
2. Science and Technology on Communication Security Laboratory, Chengdu, Sichuan 610041, China;
3. State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China

Received:2014-09-23 Revised:2014-11-23 Online:2016-05-25 Published:2016-05-25

摘要/Abstract

摘要：

分析传统的匿名漫游认证协议,指出其存在匿名不可控和通信时延较大的不足,针对上述问题,本文提出异构无线网络可控匿名漫游认证协议,远程网络认证服务器基于1轮消息交互即可完成对移动终端的身份合法性验证;并且当移动终端发生恶意操作时,家乡网络认证服务器可协助远程网络认证服务器撤销移动终端的身份匿名性.本文协议在实现匿名认证的同时,有效防止恶意行为的发生,且其通信时延较小.安全性证明表明本文协议在CK安全模型中是可证安全的.

关键词: 异构无线网络, 可控漫游, 匿名认证, CK安全模型

Abstract:

This paper analyzes the traditional anonymous roaming authentication protocol, and pointed out the deficiencies of their anonymity is not controlled and the communication is delay.The controllable anonymous roaming authentication protocol proposed in this paper for heterogeneous wireless networks, which can be completed to verify the legitimacy of the identity of the mobile terminal through a message interaction.If the mobile terminal has malicious operation, the home network authentication server can help remote network authentication server to revoke the identity anonymity of the mobile terminal.This is a protocol in anonymous authentication, at the same time, and which effectively preventing the occurrence of malicious behavior, and the communication delay.This protocol is safe in the CK security model.

Key words: heterogeneous wireless network, controlled roaming, anonymous authentication, CK security model

中图分类号:

TP393

周彦伟, 杨波, 张文政. 异构无线网络可控匿名漫游认证协议[J]. 电子学报, 2016, 44(5): 1117-1123.

ZHOU Yan-wei, YANG Bo, ZHANG Wen-zheng. Controllable and Anonymous Roaming Protocol for Heterogeneous Wireless Network[J]. Acta Electronica Sinica, 2016, 44(5): 1117-1123.

参考文献

[1] Jiang Y X,Lin C,Shen X M.Mutual authentication and key exchange protocols for roaming services in wireless mobile networks[J].IEEE Transactions on Wireless Communications,2006,5(9):569-2577.
[2] Yang G M,Wong D S,Deng X T.Anonymous and authenticated key exchange for roaming networks[J].IEEE Transactions on Wireless Communications,2007,6(9):035-1042.
[3] Shi M H,Rutagemwa H,Shen X M.A service-agent-based roaming architecture for WLAN/cellular integrated networks[J].IEEE Transactions on Vehicular Technology,2007,56(5):168-3181.
[4] 彭华熹.一种基于身份的多信任域认证模型[J].计算机学报,2006,29(8):1271-1281. Peng Hua-xi.An ientity-bsed athentication mdel for mlti-dmain[J].Chinese Journal of Computer,2006,29(8),1271-1281.(in Chinese)
[5] 姜奇,马建峰,等.基于身份的异构无线网络匿名漫游协议[J].通信学报,2010,31(10):138-145. Jiang Qi,Ma Jianfeng,et al.Identity-based roaming protocol with anonymity for heterogeneous wireless networks[J].Journal on Communications,2010,31(10):138-145.(in Chinese)
[6] 朱辉,李晖,苏万力,等.基于身份的匿名无线认证方案[J].通信学报,2009,30(4):130-136. Zhu Hui,Li Hui,Su Wanli,et,al.ID-based wireless authentication scheme with anonymity[J].Journal on Communications,2010,31(10):138-145.(in Chinese)
[7] 姜奇,李光松,马建峰,等.基于身份的无线认证方案的安全缺陷及改进[J].通信学报,2010,31(9A),209-216. Jiang Qi,Li Guangsong,Ma Jianfeng,et,al.Security flaws and improvement of an id-based wireless authentication scheme with anonymity[J].Journal on Communications,2010,31(9A):209-216.(in Chinese)
[8] 张胜,徐爱国,胡正名,等.一种基于身份的一次性公钥的构造[J].电子与信息学报,2006,28(8):1412-1414. Zhang Sheng,Xu Ai-guo,Hu Zheng-ming.et,al.Construction of the one-off public key based on identity[J].Journal of Electronics & Information Technology,2006,28(8):1412-1414.(in Chinese)
[9] 罗长远,霍士伟,刑洪智.普适环境中基于一次性公钥的匿名认证方案[J],通信学报,2012,33(2):93-98. Luo Chang-yuan,Huo Shi-wei,Xing Hong-zhi.Anonymous authentication scheme based on one-off public key in pervasive computing environments[J].Journal on Communications,2012,33(2):93-98.(in Chinese)
[10] 张恩,蔡永泉.基于双线性对的可验证的理性秘密共享方案[J].电子学报,2012,40(5):1050-1054. Zhang En,Cai Yong-quan.A werifiable rational secret sharing scheme based on bilinear pairing[J].Acta Electronica Sinica,2012,40(5):1050-1054.(in Chinese)
[11] Canerri R,Krawczyk H.Analysis of key exchange and their use for building secure channels[J].Proceedings of the Eurocrypt.Springer-Verlage,2001,452-474.
[12] 姜奇,马建峰,李光松,等.基于WAPI的WLAN与3G网络安全融合[J].计算机学报,2010,33(9):1675-1685. Jiang Qi,Ma Jianfeng,Li Guangsong,et,al.Security integration of WAPI based WLAN and 3G[J].Chinese Journal of Computer,2010,33(9):1675-1685.(in Chinese)
[13] Tin Y S T,Vasanta H,Boyd C.Protocols with security proofs for mobile applications[A].Proceedings of the ACISP 2004[C].Sydney,Australia,2004.358-369.
[14] Tin Y S T,Boyd C,Nieto J G.Provably secure key exchange:an engineering approach[A].Proceedings of the Australasian Information Security Workshop[C].Darlinghurst,Australasian,2003.97-104.
[15] Yang G M,Wong D S,Deng X T.Formal security definition and efficient construction for roaming with a privacy-preserving extension[J].Journal of Universal Computer Science,2008,14(3):441-462.

异构无线网络可控匿名漫游认证协议

Controllable and Anonymous Roaming Protocol for Heterogeneous Wireless Network

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 8

编辑推荐

Metrics

[1]	徐勇军, 李国权, 陈前斌, 林金朝. 异构无线网络干扰效率最大顽健资源分配算法[J]. 电子学报, 2020, 48(3): 545-553.
[2]	马彬, 汪栋, 谢显中. 异构无线网络中新的成本感知网络切换方案[J]. 电子学报, 2018, 46(5): 1227-1233.
[3]	周彦伟, 杨波, 张文政. 普适计算环境下的安全访问模型[J]. 电子学报, 2017, 45(4): 959-965.
[4]	盛洁, 马冬. 异构无线网络业务接入多目标优化控制算法[J]. 电子学报, 2016, 44(2): 282-288.
[5]	唐良瑞, 李文猛, 盛洁, 樊冰. 基于混沌遗传的异构无线网络接入选择策略[J]. 电子学报, 2014, 42(8): 1564-1570.
[6]	盛洁, 唐良瑞, 郝建红. 异构无线网络中基于业务转移和接入控制的混合负载均衡[J]. 电子学报, 2013, 41(2): 321-328.
[7]	陈小峰;冯登国. 隐私增强直接匿名证明方案研究[J]. 电子学报, 2011, 39(9): 2166-2172.
[8]	朱思峰;刘芳;戚玉涛;柴争义;吴建设;. 异构无线网络中基于免疫计算的联合会话接纳控制[J]. 电子学报, 2011, 39(11): 2648-2653.