面向云服务的安全高效无证书聚合签名车联网认证密钥协商协议

doi:10.3969/j.issn.0372-2112.2020.09.020

电子学报 ›› 2020, Vol. 48 ›› Issue (9): 1814-1823.DOI: 10.3969/j.issn.0372-2112.2020.09.020

所属专题：车载自组织网络

面向云服务的安全高效无证书聚合签名车联网认证密钥协商协议

张文芳, 雷丽婷, 王小敏, 王宇

西南交通大学信息科学与技术学院, 四川成都 610031

收稿日期:2019-05-17 修回日期:2019-09-20 出版日期:2020-09-25
- 通讯作者:
- 王小敏
- 作者简介:
- 张文芳 女,1978年7月出生于山西省太原市.博士,西南交通大学副教授,硕士生导师.主要研究领域为密码学和信息安全.E-mail:wfzhang@swjtu.edu.cn
  雷丽婷 女,1993年6月出生于贵州省贵阳市.硕士.主要研究方向为移动通信信息安全.E-mail:306481334@qq.com
  王宇男,1990年4月出生于河北省石家庄市.博士研究生.主要研究方向为轨道交通信息安全.E-mail:wy4324956@my.swjtu.edu.cn
- 基金资助:
- 国家自然科学基金 (No.61872302）; 四川省科技计划项目 (No.2018GZ0195，No.2019YFH0097，No.2019YFG0502）

Secure and Efficient Authentication and Key Agreement Protocol Using Certificateless Aggregate Signature for Cloud Service Oriented VANET

ZHANG Wen-fang, LEI Li-ting, WANG Xiao-min, WANG Yu

School of Information Science and Technology, Southwest Jiaotong University, Chengdu, Sichuan 610031, China

Received:2019-05-17 Revised:2019-09-20 Online:2020-09-25 Published:2020-09-25
- Corresponding author:
- WANG Xiao-min
- Supported by:
- National Natural Science Foundation of China (No.61872302); Project of Sichuan Science and Technology Program (No.2018GZ0195, No.2019YFH0097, No.2019YFG0502)

摘要/Abstract

摘要： 针对目前车联网认证密钥协商协议效率低下以及车辆公私钥频繁更新的问题，提出一个基于无证书聚合签名的车联网匿名认证与密钥协商协议.本方案通过引入临时身份和预签名机制实现对车辆的隐私保护以及匿名认证，同时通过构建临时身份索引数据库，实现可信中心对可疑车辆的事后追查，满足车辆的条件匿名性要求.此外，本方案中车辆的公私钥不随其临时身份动态改变，有效避免了已有方案公私钥频繁更新带来的系统开销.同时，为了提供高效的批量认证，采用无双线性对的聚合签名技术，实现了车辆签名的动态聚合和转发，有效降低了签名传递的通信量和云服务器的验证开销.本文方案在eCK模型和CDH问题假设下被证明是形式化安全的.

关键词: 车联网, 云服务, 认证密钥协商, 无证书, 聚合签名, 条件匿名性

Abstract: In order to solve low efficiency and frequent updates of vehicles' public keys and private keys, a certificateless aggregate signature authentication and key agreement scheme with anonymity in vehicular Ad-Hoc network (VANET) is proposed. In our scheme, by using temporary identity and pre-signature, vehicles' privacy protection and anonymity authentication can be realized. On the other hand, the suspected vehicles can be tracked by the trust authority with the index database of the temporary identity to satisfy conditional anonymity. Meantime, if the temporary identity is changed, it is not necessary to update vehicles' public keys and private keys in this scheme, so the cost of system can be reduced. Moreover, the pairing-free aggregate signature technology is used to improve the efficiency further, which makes the number of signatures and the verification cost of the server be decreased. It is shown that our protocol is provably secure in eCK model under the computational Diffie-Hellman (CDH) assumption.

Key words: vehicular Ad-Hoc network, cloud service, authentication and key agreement, certificateless, aggregate signature, conditional anonymity

中图分类号:

TP393

张文芳, 雷丽婷, 王小敏, 等. 面向云服务的安全高效无证书聚合签名车联网认证密钥协商协议[J]. 电子学报, 2020, 48(9): 1814-1823.

ZHANG Wen-fang, LEI Li-ting, WANG Xiao-min, et al. Secure and Efficient Authentication and Key Agreement Protocol Using Certificateless Aggregate Signature for Cloud Service Oriented VANET[J]. Acta Electronica Sinica, 2020, 48(9): 1814-1823.

参考文献

[1] LIN X,SUN X,WANG X,et al.TSVC:timed efficient and secure vehicular communications with privacy preserving[J].IEEE Transactions on Wireless Communications,2008,7(12):4987-4998.
[2] ZHANG C,LIN X,LU R,et al.An efficient message authentication scheme for vehicular communications[J].IEEE Transactions on Vehicular Technology,2008,57(6):3357-3368.
[3] CHIM T W,YIU S M,HUI L C K,et al.Security and privacy issues for inter-vehicle communications in VANETs[A].Sensor,Mesh and Ad Hoc Communications and Networks Workshops,2009.SECON Workshops'09.IEEE Communications Society Conference on[C].Rome,Italy:IEEE,2009.1-3.
[4] WASEF A,SHEN X.EMAP:Expedite message authentication protocol for vehicular ad hoc networks[J].IEEE Transactions on Mobile Computing,2013,12(1):78-89.
[5] WANG S B,YAO N M,GONG N,GAO Z G.A trigger-based pseudonym exchange scheme for location privacy preserving in VANETs[J].Peer-to-Peer Networking and Applications,2018,11(3):548-560.
[6] 谢永,吴黎兵,张宇波,等.面向车联网的多服务器架构的匿名双向认证与密钥协商协议[J].计算机研究与发展,2016,53(10):2323-2333. XIE Yong,WU Li-bing,ZHANG Yu-bo,et al.Anonymous mutual authentication and key agreement protocol in multi-server architecture for VANETs[J].Journal of Computer Research and Development,2016,53(10):2323-2333.(in Chinese)
[7] BAYAT M,BARMSHOORY M,RAHIMI M,et al.A secure authentication scheme for VANETs with batch verification[J].Wireless Networks,2015,21(5):1-11.
[8] 宋成,张明月,彭维平,等.基于双线性对的车联网批量匿名认证方案研究[J].通信学报,2017,38(06):49-57. SONG Cheng,ZHANG Ming-yue,PENG Wei-ping,et al.Research on batch anonymous authentication scheme for VANET based on bilinear pairing[J].Journal on Communications,2017,38(06):49-57.(in Chinese)
[9] LIPPOLD G,BOYD C,NIETO J G.Strongly secure certificateless key agreement[A].Pairing-Based Cryptography-Pairing 2009[C].Berlin:Springer,2009.206-230.
[10] 苏航,刘建伟,陶芮.无证书的层次认证密钥协商协议[J].通信学报,2016,37(7):161-171. SU Hang,LIU Jian-wei,TAO Rui.Hierarchical certificateless authenticated key agreement protocol[J].Journal on Communications,2016,37(7):161-171.(in Chinese)
[11] HAN M,HUA L,MA S.A self-authentication and deniable efficient group key agreement protocol for VANET[J].KSⅡ Transactions on Internet and Information Systems,2017,11(7):3678-3698.
[12] LI Y,CHEN W,CAI Z,et al.CAKA:a novel certificateless-based cross-domain authenticated key agreement protocol for wireless mesh networks[J].Wireless Networks,2016,22(8):2523-2535.
[13] 陈明.强安全的匿名隐式漫游认证与密钥协商方案[J].计算机研究与发展,2017,54(12):2772-2784. CHEN Ming.Strongly secure anonymous implicit authentication and key agreement for roaming service[J].Journal of Computer Research and Development,2017,54(12):2772-2784.(in Chinese)
[14] ODELU V,DAS A K,KUMARI S,et al.Provably secure authenticated key agreement scheme for distributed mobile cloud computing services[J].Future Generation Computer Systems,2017,68:74-88.
[15] TSENG Y,HUANG S,YOU M.Strongly secure ID-based authenticated key agreement protocol for mobile multi-server environments[J].International Journal of Communication Systems,2017,30(11):1074-5351.
[16] 王真,马兆丰,罗守山.基于身份的移动互联网高效认证密钥协商协议[J].通信学报,2017,38(08):19-27. WANG Zhen,MA Zhao-feng,LUO Shou-shan.Identity-based efficient authentication and key agreement protocol for mobile Internet[J].Journal on Communications,2017,38(08):19-27.(in Chinese)
[17] HE D,ZEADALLY S,KUMAR N,et al.Efficient and anonymous mobile user Authentication protocol using self-certified public key cryptography for multi-server architectures[J].IEEE Transactions on Information Forensicsand Security,2016,11(9):2052-2064.

面向云服务的安全高效无证书聚合签名车联网认证密钥协商协议

Secure and Efficient Authentication and Key Agreement Protocol Using Certificateless Aggregate Signature for Cloud Service Oriented VANET

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

[1]	杨坤伟, 杨波, 周彦伟. 群智网络中基于区块链的有序聚合签名认证方案[J]. 电子学报, 2022, 50(2): 358-365.
[2]	廖勇, 田肖懿, 蔡志镕, 花远肖, 韩庆文. 面向C-V2I的基于边缘计算的智能信道估计[J]. 电子学报, 2021, 49(5): 833-842.
[3]	刘雷, 陈晨, 冯杰, 肖婷婷, 裴庆祺. 车载边缘计算卸载技术研究综述[J]. 电子学报, 2021, 49(5): 861-871.
[4]	张德干, 崔玉亚, 陈晨, 刘晓欢, 牛红莉. 一种面向高速路车联网场景的自适应路由方法[J]. 电子学报, 2020, 48(1): 172-179.
[5]	杨小东, 王美丁, 裴喜祯, 李雨潼, 陈春霖, 麻婷春. 一种标准模型下无证书签名方案的安全性分析与改进[J]. 电子学报, 2019, 47(9): 1972-1978.
[6]	周平, 殷波, 邱雪松, 郭少勇, 孟洛明. 面向服务可靠性的云资源调度方法[J]. 电子学报, 2019, 47(5): 1036-1043.
[7]	陈明. 移动漫游中强安全的两方匿名认证密钥协商方案[J]. 电子学报, 2019, 47(1): 16-24.
[8]	吴涛, 景晓军. 一种强不可伪造无证书签名方案的密码学分析与改进[J]. 电子学报, 2018, 46(3): 602-606.
[9]	杨震, 杨甜甜, 范科峰, 王勇. 基于信任合成的云服务动态组合机制研究[J]. 电子学报, 2018, 46(3): 614-620.
[10]	彭鑫, 李仁发, 付彬, 李文, 刘志鹏. 基于路径时延模型的车联网数据分发方案[J]. 电子学报, 2017, 45(9): 2195-2201.
[11]	周彦伟, 杨波, 张文政. 匿名的无证书多接收者签密机制[J]. 电子学报, 2016, 44(8): 1784-1790.
[12]	许艳, 黄刘生, 田苗苗, 仲红, 崔杰. 一种可证安全的紧致无证书聚合签名方案[J]. 电子学报, 2016, 44(8): 1845-1850.
[13]	寻甜甜, 于佳, 杨光洋, 江秀秀, 郝蓉. 密钥隔离的无证书聚合签名[J]. 电子学报, 2016, 44(5): 1111-1116.
[14]	张玉磊, 张灵刚, 张永洁, 王欢, 王彩芬. 匿名CLPKC-TPKI异构签密方案[J]. 电子学报, 2016, 44(10): 2432-2439.
[15]	赵慧艳, 于佳, 李朦, 寻甜甜, 赵华伟, 舒明雷. 并行密钥隔离聚合签名[J]. 电子学报, 2015, 43(5): 1035-1040.