电子学报 ›› 2020, Vol. 48 ›› Issue (9): 1814-1823.DOI: 10.3969/j.issn.0372-2112.2020.09.020

所属专题: 车载自组织网络

• 学术论文 • 上一篇    下一篇

面向云服务的安全高效无证书聚合签名车联网认证密钥协商协议

张文芳, 雷丽婷, 王小敏, 王宇   

  1. 西南交通大学信息科学与技术学院, 四川成都 610031
  • 收稿日期:2019-05-17 修回日期:2019-09-20 出版日期:2020-09-25
    • 通讯作者:
    • 王小敏
    • 作者简介:
    • 张文芳 女,1978年7月出生于山西省太原市.博士,西南交通大学副教授,硕士生导师.主要研究领域为密码学和信息安全.E-mail:wfzhang@swjtu.edu.cn
      雷丽婷 女,1993年6月出生于贵州省贵阳市.硕士.主要研究方向为移动通信信息安全.E-mail:306481334@qq.com
      王宇 男,1990年4月出生于河北省石家庄市.博士研究生.主要研究方向为轨道交通信息安全.E-mail:wy4324956@my.swjtu.edu.cn
    • 基金资助:
    • 国家自然科学基金 (No.61872302); 四川省科技计划项目 (No.2018GZ0195,No.2019YFH0097,No.2019YFG0502)

Secure and Efficient Authentication and Key Agreement Protocol Using Certificateless Aggregate Signature for Cloud Service Oriented VANET

ZHANG Wen-fang, LEI Li-ting, WANG Xiao-min, WANG Yu   

  1. School of Information Science and Technology, Southwest Jiaotong University, Chengdu, Sichuan 610031, China
  • Received:2019-05-17 Revised:2019-09-20 Online:2020-09-25 Published:2020-09-25
    • Corresponding author:
    • WANG Xiao-min
    • Supported by:
    • National Natural Science Foundation of China (No.61872302); Project of Sichuan Science and Technology Program (No.2018GZ0195, No.2019YFH0097, No.2019YFG0502)

摘要: 针对目前车联网认证密钥协商协议效率低下以及车辆公私钥频繁更新的问题,提出一个基于无证书聚合签名的车联网匿名认证与密钥协商协议.本方案通过引入临时身份和预签名机制实现对车辆的隐私保护以及匿名认证,同时通过构建临时身份索引数据库,实现可信中心对可疑车辆的事后追查,满足车辆的条件匿名性要求.此外,本方案中车辆的公私钥不随其临时身份动态改变,有效避免了已有方案公私钥频繁更新带来的系统开销.同时,为了提供高效的批量认证,采用无双线性对的聚合签名技术,实现了车辆签名的动态聚合和转发,有效降低了签名传递的通信量和云服务器的验证开销.本文方案在eCK模型和CDH问题假设下被证明是形式化安全的.

关键词: 车联网, 云服务, 认证密钥协商, 无证书, 聚合签名, 条件匿名性

Abstract: In order to solve low efficiency and frequent updates of vehicles' public keys and private keys, a certificateless aggregate signature authentication and key agreement scheme with anonymity in vehicular Ad-Hoc network (VANET) is proposed. In our scheme, by using temporary identity and pre-signature, vehicles' privacy protection and anonymity authentication can be realized. On the other hand, the suspected vehicles can be tracked by the trust authority with the index database of the temporary identity to satisfy conditional anonymity. Meantime, if the temporary identity is changed, it is not necessary to update vehicles' public keys and private keys in this scheme, so the cost of system can be reduced. Moreover, the pairing-free aggregate signature technology is used to improve the efficiency further, which makes the number of signatures and the verification cost of the server be decreased. It is shown that our protocol is provably secure in eCK model under the computational Diffie-Hellman (CDH) assumption.

Key words: vehicular Ad-Hoc network, cloud service, authentication and key agreement, certificateless, aggregate signature, conditional anonymity

中图分类号: