适用于移动云计算的抗中间人攻击的SSP方案

doi:10.3969/j.issn.0372-2112.2016.08.005

电子学报 ›› 2016, Vol. 44 ›› Issue (8): 1806-1813.DOI: 10.3969/j.issn.0372-2112.2016.08.005

适用于移动云计算的抗中间人攻击的SSP方案

陈凯^1,2,3, 许海铭^4,5, 徐震^1,2, 林东岱^1,2, 刘勇⁶

1. 信息安全国家重点实验室, 北京 100093;
2. 中国科学院信息工程研究所, 北京 100093;
3. 中国科学院大学, 北京 100049;
4. 国家能源局安全司, 北京 100824;
5. 华北电力大学电气与电子工程学院, 北京 102206;
6. 山东省电力公司调度控制中心自动化处, 山东济南 250000

收稿日期:2015-01-15 修回日期:2015-03-17 出版日期:2016-08-25
- 作者简介:
- 陈凯男,1985年生于天津.中国科学院信息工程研究所博士生.研究方向为网络与系统安全、身份认证、工业控制系统安全.E-mail:chenk@iie.ac.cn;许海铭 男,国家能源局安全司处长,华北电力电力大学电气与电子工程学院博士生,主要从事电力系统安全研究.
- 基金资助:
- 中国科学院先导专项子课题 (No.XDA06010701）; 信息安全国家重点实验室科研仪器设备专项 (No.Y4D0031302）

Hash-Based Secure Simple Pairing for Preventing Man-in-the-Middle Attacks in Mobile Cloud Computing

CHEN Kai^1,2,3, XU Hai-ming^4,5, XU Zhen^1,2, LIN Dong-dai^1,2, LIU Yong⁶

1. State Key Laboratory of Information Security, Beijing 100093, China;
2. Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China;
3. University of Chinese Academy of Science, Beijing 100049, China;
4. National Energy Administration, Beijing 100824, China;
5. School of Electrical and Electronic Engineering, North China Electric Power University, Beijing 102206, China;
6. State Grid Shandong Electric Power Company, Dispatching Control Center, Jinan, Shandong 250000, China

Received:2015-01-15 Revised:2015-03-17 Online:2016-08-25 Published:2016-08-25

摘要/Abstract

摘要： 低功率蓝牙（BLE）专为资源受限的设备设计，但现有的研究已经指出其安全简单配对方案（SSP）存在中间人攻击（MITM）漏洞.文章指出造成MITM漏洞的根本原因是：配对信息被篡改以及JW模式自身的漏洞.为此文章中提出了两个适用于移动云计算（MCC）中BLE设备的SSP改进方案，所提出的方案基于哈希函数并利用MCC技术提高SSP的安全性.方案1适用于支持PE或者OOB模式的BLE设备，其利用哈希函数确保配对信息的真实性、可靠性.方案2通过哈希序列来解决仅支持JW模式的BLE设备的MITM攻击漏洞.文章分别从安全角度和性能角度对所提出的方案进行分析，以表明方案在不同级别敌手的攻击下可以提供MITM攻击防护能力.

关键词: 蓝牙低功率, 安全简单配对方案, 中间人攻击, 移动云计算

Abstract: Bluetooth low energy (BLE) is designed for the devices with computational and power limitations.But it has been confirmed that Secure Simple Pairing (SSP) is vulnerable to the MITM attack.We identify the root causes of the problem:the pairing messages being tampered,and the vulnerability of the JW model.In this paper,we propose two hash-based SSP schemes for the devices in Mobile Cloud Computing (MCC).The proposed schemes enhance the SSP security with the help of MCC.Scheme I is applied into the devices which support the PE or OOB model.It uses the hash function to ensure the authenticity and integrity of the pairing messages.Scheme Ⅱ is suitable for the devices which only support the JW model.It improves the security of the JW model through using the hash array.At the end of this paper,we examine the performance for the proposed schemes,and perform the security analysis to show that they can provide the MITM protection against the adversaries with different levels of power.

Key words: bluetooth low energy, secure simple pairing, man-in-the-middle attacks, mobile cloud computing

中图分类号:

TP309.1

陈凯, 许海铭, 徐震, 林东岱, 刘勇. 适用于移动云计算的抗中间人攻击的SSP方案[J]. 电子学报, 2016, 44(8): 1806-1813.

CHEN Kai, XU Hai-ming, XU Zhen, LIN Dong-dai, LIU Yong. Hash-Based Secure Simple Pairing for Preventing Man-in-the-Middle Attacks in Mobile Cloud Computing[J]. Acta Electronica Sinica, 2016, 44(8): 1806-1813.

参考文献

[1] MCC Forum.The Definition of MCC[EB/OL].http://www.mobilecloudcomputingforum.com/,2011-08-16/2014-12-25.
[2] Padgette J,Scarfone K,Chen L.National Institute of Standards and Technology (NIST) Special Publications 800-121:Guide to Bluetooth Security[EB/OL].http://csrc.nist.gov/publications/nistpubs/800-121-rev1/sp800-121-rev1.pdf,2012-06-12/2014-03-29.
[3] Kaur S.How to secure our bluetooth insecure world![J].IETE Technical Review,2013,30(2):95-101.
[4] Hattaja K,Toivanen P.Two practical man-in-the-middle attacks on bluetooth secure simple pairing and countermeasures[J].IEEE Transactions on Wireless Communications,2010,9(1):384-392.
[5] Haataja K,Hyppønen K.Man-in-the-middle attacks on bluetooth:a comparative analysis,a novel attack,and countermeasures[A].Proceedings of the 3rd International Symposium on Communications,Control,and Signal Processing[C].Piscataway,NJ,United States:IEEE Computer Society,2008.1096-1102.
[6] Sharmila D,Neelaveni R,Kiruba K.Bluetooth man-in-the-middle attack based on secure simple pairing using out of band association model[A].Proceedings of the 2009 International Conference on Control Automation,Communication and Energy Conservation[C].Piscataway,NJ,United States:IEEE Computer Society,2009.1-6.
[7] Ueeten O,Serinken N.Wireless security through rf fingerprinting[J].Canadian Journal of Electrical and Computer Engineering,2007,32(1):27-33.
[8] Pasanen S,Haataja K,Pivinen N,et al.New efficient rf fingerprint-based security solution for bluetooth secure simple pairing[A].Proceedings of the 43rd Annual Hawaii International Conference on System Sciences[C].Piscataway,NJ,United States:IEEE Computer Society,2010.2819-2826.
[9] 耿君峰,郁滨.基于蓝牙设备地址的分组净荷签密方案设计[J].计算机工程与设计,2015,36(1):103-107.
[10] Haataja K.New efficient intrusion detection and prevention system for bluetooth networks[A].Proceedings of the 1st International Conference on MOBILe Wireless MiddleWARE,Operating Systems,and Applications[C].Brussels,Belgium:ICST,2008.Article No.16.
[11] Dunning J P.Taming the blue beast:a survey of bluetooth based threats[J].IEEE Security and Privacy,2010,8(2):20-27.
[12] Sandhya S,Devi K A S.Analysis of bluetooth threats and v4.0 security features[A].Proceedings of the 2012 International Conference on Computing,Communication and Applications[C].Piscataway,NJ,United States:IEEE Computer Society,2012.1-4.
[13] Hypponen K,Haataja K M J. "Ni†o" man-in-the-middle attack on bluetooth secure simple pairing[A].Proceedings of the 3rd IEEE/IFIP International Conference in Central Asia on Internet[C].Piscataway,NJ,United States:IEEE Computer Society,2007.1-5.
[14] Haataja K,Toivanen P.Practical man-in-the-middle attacks against bluetooth secure simple pairing[A].Proceedings of the 2008 International Conference on Wireless Communications,Networking and Mobile Computing[C].Piscataway,NJ,United States:IEEE Computer Society,2008.1-5.
[15] Mutchukota T R,Panigrahy S K,Jena S K.Man-in-the-middle attack and its countermeasure in bluetooth secure simple pairing[A].Proceedings of the 5th International Conference on Information Processing[C].Heidelberg,Germany:Springer Verlag,2011.367-376.
[16] 张卫明,李世取.组合生成器的多线性相关攻击[J].电子学报,2005,33(3):427-432.ZHANG Wei-ming,LI Shi-qu,Multi-linear correlation attack on combiners[J].Acta Electronica Sinica,2005,33(3):427-432.(in Chinese)
[17] Marquess K,Park W,Jones L,et al.Bluetooth Specification Version 4.0[EB/OL].https://www.bluetooth.org/docman/handlers/downloaddoc.ashx?doc-id=229737,2010-06-30/2014-10-06.
[18] Marquess K,Park W,Jones L,et al.Bluetooth Specification Version 4.1[EB/OL].https://www.bluetooth.org/DocMan/handlers/DownloadDoc.ashx?doc-id=282159,2013-12-03/2014-12-20.

适用于移动云计算的抗中间人攻击的SSP方案

Hash-Based Secure Simple Pairing for Preventing Man-in-the-Middle Attacks in Mobile Cloud Computing

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 13

编辑推荐

Metrics

[1]	郑秋华, 胡程楠, 崔婷婷, 申延召, 曾英佩, 吴铤. 一种基于概率分析的DHR模型安全性分析方法[J]. 电子学报, 2021, 49(8): 1586-1598.
[2]	王涛, 陈鸿昶. 基于多维异构特征与反馈感知调度的SDN内生安全控制平面[J]. 电子学报, 2021, 49(6): 1117-1124.
[3]	欧庆于, 罗芳, 吴晓平, 杨鹏. 基于电压毛刺故障扰动的分组密码安全性度量方法研究[J]. 电子学报, 2021, 49(3): 417-423.
[4]	王涛, 陈鸿昶. 全要素SDN指纹攻击及其模糊混淆防御机制研究[J]. 电子学报, 2020, 48(6): 1213-1219.
[5]	马向亮, 王宏, 李冰, 方进社, 严妍, 白学文, 王安. 基于能量分析技术的芯片后门指令分析方法[J]. 电子学报, 2019, 47(3): 686-691.
[6]	徐明迪, 张焕国, 张帆, 任正伟. 授权约束下的平台配置证明研究[J]. 电子学报, 2017, 45(6): 1389-1395.
[7]	徐明迪, 张焕国, 张帆, 杨连嘉. 可信系统信任链研究综述[J]. 电子学报, 2014, 42(10): 2024-2031.
[8]	徐超, 何炎祥, 陈勇, 刘健博, 吴伟, 李清安. 一种多核系统可靠性加强的任务调度方法[J]. 电子学报, 2013, 41(5): 1019-1024.
[9]	徐超, 何炎祥, 吴伟, 陈勇, 刘健博. 基于模拟关系的编译优化实现正确性验证方法[J]. 电子学报, 2012, 40(11): 2171-2176.
[10]	欧庆于, 张焕国, 吴晓平, 李凤华, 罗芳. 基于亚稳态的QDI逻辑随机路径切换方法研究[J]. 电子学报, 2012, 40(10): 1996-2001.
[11]	孙建国;张国印;姚爱红;武俊鹏. 一种矢量地图无损数字水印技术[J]. 电子学报, 2010, 38(12): 2786-2790.
[12]	邱扬;魏丽丽;田锦;陈光达;钱柳宇. 基于数字滤波的计算机视频信息防泄漏研究[J]. 电子学报, 2008, 36(6): 1188-1192.
[13]	胡清峰, 胡磊, 刘合国, . 3F-L数字签名方案的分析与改进[J]. 电子学报, 2005, 33(3): 492-495.