A Lightweight Anonymous Authentication Protocol for Industry 5.0 Based on Chained CRP-Enabled TEE-PUF

SONG Jian-hua; ZHANG Tian-yi; ZHANG Yan

doi:10.12263/DZXB.20250478

您当前的位置：

首页 >

文章列表页 >

A Lightweight Anonymous Authentication Protocol for Industry 5.0 Based on Chained CRP-Enabled TEE-PUF

PAPERS | 更新时间：2025-12-27

- A Lightweight Anonymous Authentication Protocol for Industry 5.0 Based on Chained CRP-Enabled TEE-PUF
- ACTA ELECTRONICA SINICA Vol. 53, Issue 8, Pages: 2946-2961(2025)
- 作者机构：
  
  1.湖北大学网络空间安全学院，湖北武汉 430062
  2.湖北大学计算机学院，湖北武汉 430062
  3.智能感知系统与安全教育部重点实验室，湖北武汉 430062
  4.智能网联汽车网络安全湖北省工程研究中心，湖北武汉 430062
  5.大数据智能分析与行业应用湖北省重点实验室，湖北武汉 430062
- 作者简介：
- 基金信息：
  
  National Natural Science Foundation of China(62377009);Wuhan Knowledge Innovation Special Project(2023BAA018);Key Project of Hubei Provincial Key R&D Program(2021BAA184;2021BAA188);Research Center for Performance Evaluation and Information Management of Key Research Bases for Humanities and Social Sciences in Hubei Provincial Colleges and Universities(2020JX01);Major Project of Hubei Province (JD)(2024BAA008)
- DOI：10.12263/DZXB.20250478
  CLC： TN915.08;TN918.4
- Received：05 June 2025，
  
  Accepted：22 July 2025，
  
  Published：25 August 2025
- 稿件说明：
移动端阅览
宋建华, 张天羿, 张龑. 链式CRP赋能TEE-PUF的工业5.0轻量级匿名认证协议[J]. 电子学报, 2025, 53(08): 2946-2961.

SONG Jian-hua, ZHANG Tian-yi, ZHANG Yan. A Lightweight Anonymous Authentication Protocol for Industry 5.0 Based on Chained CRP-Enabled TEE-PUF[J]. Acta Electronica Sinica, 2025, 53(08): 2946-2961.
宋建华, 张天羿, 张龑. 链式CRP赋能TEE-PUF的工业5.0轻量级匿名认证协议[J]. 电子学报, 2025, 53(08): 2946-2961. DOI：10.12263/DZXB.20250478

SONG Jian-hua, ZHANG Tian-yi, ZHANG Yan. A Lightweight Anonymous Authentication Protocol for Industry 5.0 Based on Chained CRP-Enabled TEE-PUF[J]. Acta Electronica Sinica, 2025, 53(08): 2946-2961. DOI：10.12263/DZXB.20250478

摘要

近年来，工业5.0已逐渐成为全球制造业发展的新兴方向，大量资源受限的智能设备广泛应用于开放环境中.针对现有工业5.0认证协议中计算开销过大、关键安全属性缺失等问题，本文提出了一种基于物理不可克隆函数（Physical Unclonable Functions，PUF）的轻量级匿名认证协议，有效解决了工业5.0环境下计算开销低与高安全性需求之间的矛盾.所提协议使用了可信执行环境（Trusted Execution Environment，TEE）增强PUF，优化了现有三方认证协议的信息流，提出了链式挑战-响应对（Challenge-Response Pair，CRP）更新机制，实现了用户、网关与工业5.0智能设备的三方认证与密钥协商.同时，基于形式化与非形式化的安全分析证明了该协议能够有效抵御智能设备窃取攻击及其他常见攻击类型.与近几年相关协议的对比分析表明，本文协议在平均降低了54%的计算开销的同时满足了更多安全需求.

Abstract

In recent years

Industry 5.0 has gradually emerged as a new direction for the development of global manufacturing

with a large number of resource-constrained smart devices being widely deployed in open environments. To address issues such as excessive computational overhead and the lack of critical security attributes in existing Industry 5.0 authentication protocols

this paper proposes a lightweight anonymous authentication protocol based on physical unclonable functions (PUF)

effectively resolving the conflict between low computational overhead and high-security requirements in the Industry 5.0 environment. The proposed protocol utilizes trusted execution environment (TEE) to enhance PUF

optimizes the information flow of existing three-party authentication protocols

and introduces a chained challenge-response pair (CRP) update mechanism

achieving three-party authentication and key agreement among users

gateways

and Industry 5.0 smart devices. Furthermore

formal and informal security analyses demonstrate that the protocol can effectively resist smart device theft attacks and other common attack types. Comparative analysis with related protocols in recent years shows that the proposed protocol reduces the average computational overhead by 54% while meeting more security requirements.

关键词

Keywords

references

彭磊 . 新基建时代如何保障工业互联网数据安全 [J ] . 中国工业和信息化 , 2021 , 8 : 38 - 44 .

PENG L . How to ensure the security of industrial Internet data in the new infrastructure era [J ] . China Industry & Information Technology , 2021 , 8 : 38 - 44 . (in Chinese)

GUO Y M , GUO Y J , XIONG P , et al . Deeper insight into why authentication schemes in IoT environments fail to achieve the desired security [J ] . IEEE Transactions on Information Forensics and Security , 2024 , 19 : 4615 - 4627 .

GUO Y M , GUO Y J . CS-LAKA: A lightweight authenticated key agreement protocol with critical security properties for IoT environments [J ] . IEEE Transactions on Services Computing , 2023 , 16 ( 6 ): 4102 - 4114 .

TANVEER M , ALKHAYYAT A , KHAN A U , et al . REAP-IIoT: Resource-efficient authentication protocol for the industrial Internet of Things [J ] . IEEE Internet of Things Journal , 2022 , 9 ( 23 ): 24453 - 24465 .

LI N , MA M D , WANG H . ASAP-IIOT: An anonymous secure authentication protocol for industrial Internet of Things [J ] . Sensors , 2024 , 24 ( 4 ): 1243 .

JAIN U , TRIPATHI A , KUMAR S , et al . Simple, secure and lightweight authentication protocol with session-key generation for IIoT device in IIoT networks [J ] . Microsystem Technologies , 2025 , 31 ( 2 ): 299 - 311 .

VINOTH R , DEBORAH L J . An efficient key agreement and authentication protocol for secure communication in industrial IoT applications [J ] . Journal of Ambient Intelligence and Humanized Computing , 2023 , 14 ( 3 ): 1431 - 1443 .

SADHU P K , ABDELGAWAD A . PMVU Auth . Physical unclonable function and machine learning based zero knowledge internet of vehicle unlock and authentication framework[EB/OL ] . ( 2023-08-18 )[ 2025-05-05 ] . https://www.techrxiv.org/doi/full/10.36227/techrxiv.23891277 https://www.techrxiv.org/doi/full/10.36227/techrxiv.23891277 .

ZHANG Y , LI B , WU J X , et al . Efficient and privacy-preserving blockchain-based multifactor device authentication protocol for cross-domain IIoT [J ] . IEEE Internet of Things Journal , 2022 , 9 ( 22 ): 22501 - 22515 .

YI F M , ZHANG L , XU L J , et al . WSNEAP: An efficient authentication protocol for IIoT-oriented wireless sensor networks [J ] . Sensors , 2022 , 22 ( 19 ): 7413 .

KHARGHANI E , ALIAKBARI S , BIDAD J , et al . A lightweight authentication protocol for M2M communication in IIoT using physical unclonable functions [C ] // 2023 31st International Conference on Electrical Engineering (ICEE) . Piscataway : IEEE , 2023 : 676 - 683 .

AYUB M F , LI X , MAHMOOD K , et al . Secure consumer-centric demand response management in resilient smart grid as industry 5.0 application with blockchain-based authentication [J ] . IEEE Transactions on Consumer Electronics , 2024 , 70 ( 1 ): 1370 - 1379 .

GAO Y M , ZHOU T Q , ZHENG W Y , et al . High-availability authentication and key agreement for Internet of Things-based devices in industry 5.0 [J ] . IEEE Transactions on Industrial Informatics , 2024 , 20 ( 12 ): 13571 - 13579 .

袁征 , 张跃飞 , 冯笑 , 等 . 基于PUF的电力物联网智能终端认证协议 [J ] . 信息网络安全 , 2025 , 25 ( 1 ): 13 - 26 .

YUAN Z , ZHANG Y F , FENG X , et al . PUF-based smart terminal authentication protocol for power Internet of Things [J ] . Netinfo Security , 2025 , 25 ( 1 ): 13 - 26 . (in Chinese)

TIAN C , MA J F , LI T , et al . Provably and physically secure UAV-assisted authentication protocol for IoT devices in unattended settings [J ] . IEEE Transactions on Information Forensics and Security , 2024 , 19 : 4448 - 4463 .

MAJERNÍK M , DANESHJO N , MALEGA P , et al . Sustainable development of the intelligent industry from industry 4.0 to industry 5.0 [J ] . Advances in Science and Technology Research Journal , 2022 , 16 ( 2 ): 12 - 18 .

ZHANG T , SHEN J , YANG H J , et al . Sustainable authentication and key agreement protocol using chaotic maps for industry 5.0 [J ] . IEEE Transactions on Consumer Electronics , 2024 , 70 ( 1 ): 1580 - 1589 .

XU Z S , LIANG W , LI K C , et al . A time-sensitive token-based anonymous authentication and dynamic group key agreement scheme for industry 5.0 [J ] . IEEE Transactions on Industrial Informatics , 2022 , 18 ( 10 ): 7118 - 7127 .

PAPPU R , RECHT B , TAYLOR J , et al . Physical one-way functions [J ] . Science , 2002 , 297 ( 5589 ): 2026 - 2030 .

GAO Y S , AL-SARAWI S F , ABBOTT D . Physical unclonable functions [J ] . Nature Electronics , 2020 , 3 ( 2 ): 81 - 91 .

KRAWCZYK H , BELLARE M , CANETTI R . HMAC: Keyed-Hashing for Message Authentication, RFC 2104 [S/OL ] . [ 2025-06-30 ] . https://datatracker.ietf.org/doc/html/rfc2104 https://datatracker.ietf.org/doc/html/rfc2104 .

范冠男 , 董攀 . 基于TrustZone的可信执行环境构建技术研究 [J ] . 信息网络安全 , 2016 , 16 ( 3 ): 21 - 27 .

FAN G N , DONG P . Research on trusted execution environment building technology based on TrustZone [J ] . Netinfo Security , 2016 , 16 ( 3 ): 21 - 27 . (in Chinese)

杜冬冬 , 杨璧丞 , 余炀 , 等 . SegTEE: 面向小型端侧设备的可信执行环境系统 [J ] . 计算机学报 , 2025 , 48 ( 1 ): 188 - 209 .

DU D D , YANG B C , YU Y , et al . SegTEE: Trusted execution environment for lightweight edge devices [J ] . Chinese Journal of Computers , 2025 , 48 ( 1 ): 188 - 209 . (in Chinese)

付裕 , 林璟锵 , 冯登国 . 虚拟化与密码技术应用: 现状与未来 [J ] . 密码学报(中英文) , 2024 , 11 ( 1 ): 3 - 21 .

FU Y , LIN J Q , FENG D G . When virtualization meets applied cryptography: Current status and future trend [J ] . Journal of Cryptologic Research , 2024 , 11 ( 1 ): 3 - 21 . (in Chinese)

AITCHISON C , BUCKLE R , CH’NG A , et al . On the integration of physically unclonable functions into ARM TrustZone security technology [C ] // 2020 European Conference on Circuit Theory and Design . Piscataway : IEEE , 2020 : 1 - 4 .

DOLEV D , YAO A . On the security of public key protocols [J ] . IEEE Transactions on Information Theory , 1983 , 29 ( 2 ): 198 - 208 .

CANETTI R , KRAWCZYK H . Analysis of key-exchange protocols and their use for building secure channels [M ] // Advances in Cryptology — EUROCRYPT 2001 . Berlin, Heidelberg : Springer Berlin Heidelberg , 2001 : 453 - 474 .

郭奕旻 , 张振峰 , 熊平 , 等 . 基于PUF的轻量级雾辅助物联网认证协议 [J ] . 计算机学报 , 2022 , 45 ( 7 ): 1412 - 1430 .

GUO Y M , ZHANG Z F , XIONG P , et al . PUF-based lightweight authentication protocols for fog assisted IoT [J ] . Chinese Journal of Computers , 2022 , 45 ( 7 ): 1412 - 1430 . (in Chinese)

范馨月 , 刘洁 , 何嘉辉 . V2G中基于PUF的轻量级匿名认证协议 [J ] . 通信学报 , 2024 , 45 ( 10 ): 129 - 141 .

FAN X Y , LIU J , HE J H . Lightweight PUF-based anonymous authentication protocol in V2G [J ] . Journal on Communications , 2024 , 45 ( 10 ): 129 - 141 . (in Chinese)

夏卓群 , 苏潮 , 徐梓桑 , 等 . 基于物理不可克隆函数的轻量级可证明安全车联网认证协议 [J ] . 电子与信息学报 , 2024 , 46 ( 9 ): 3788 - 3796 .

XIA Z Q , SU C , XU Z S , et al . A lightweight and provably secure authentication protocol for internet of vehicles using physical unclonable function [J ] . Journal of Electronics & Information Technology , 2024 , 46 ( 9 ): 3788 - 3796 . (in Chinese)

邹光南 , 尤启迪 , 金星虎 , 等 . 面向车联网车辆的轻量级持续身份认证协议 [J ] . 电子学报 , 2024 , 52 ( 6 ): 1903 - 1910 .

ZOU G N , YOU Q D , JIN X H , et al . Lightweight continuous authentication protocol for vehicles in vehicular networks [J ] . Acta Electronica Sinica , 2024 , 52 ( 6 ): 1903 - 1910 . (in Chinese)

GUO Y M , ZHANG Z F , GUO Y J . Anonymous authenticated key agreement and group proof protocol for wearable computing [J ] . IEEE Transactions on Mobile Computing , 2022 , 21 ( 8 ): 2718 - 2731 .

NAOUI S , ELHDHILI M E , SAIDANE L A . Lightweight and secure password based smart home authentication protocol: LSP-SHAP [J ] . Journal of Network and Systems Management , 2019 , 27 ( 4 ): 1020 - 1042 .

GUPTA A , TRIPATHI M , SHAIKH T J , et al . A lightweight anonymous user authentication and key establishment scheme for wearable devices [J ] . Computer Networks , 2019 , 149 : 29 - 42 .

WAZID M , DAS A K , ODELU V , et al . Secure remote user authenticated key establishment protocol for smart home environment [J ] . IEEE Transactions on Dependable and Secure Computing , 2020 , 17 ( 2 ): 391 - 406 .

JIANG Q , ZHANG X , ZHANG N , et al . Three-factor authentication protocol using physical unclonable function for IoV [J ] . Computer Communications , 2021 , 173 : 45 - 55 .

YU S , PARK K . PUF-based robust and anonymous authentication and key establishment scheme for V2G networks [J ] . IEEE Internet of Things Journal , 2024 , 11 ( 9 ): 15450 - 15464 .

CHEN C M , CHEN Z T , KUMARI S , et al . LAP-IoHT: A lightweight authentication protocol for the Internet of health things [J ] . Sensors , 2022 , 22 ( 14 ): 5401 .

POH G S , GOPE P , NING J T . PrivHome: Privacy-preserving authenticated communication in smart home environment [J ] . IEEE Transactions on Dependable and Secure Computing , 2021 , 18 ( 3 ): 1095 - 1107 .

Views

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Lightweight Continuous Authentication Protocol for Vehicles in Vehicular Networks

Internet of Things Oriented SM4 Lightweight Optimization Implementation

Lightweight Verifiable Group Authentication Scheme for the Internet of Things

Related Author

ZHANG Yan

SONG Jian-hua

LI Jie-yu

MA Yong-chun

JIN Xing-hu

YOU Qi-di

ZOU Guang-nan

XU Ying-hui

Related Institution

Key Laboratory of Intelligent Sensing System and Security (Hubei University), Ministry of Education

Spacestar Technology Co.，Ltd.

Department of Computer Science and Technology， Tsinghua University

School of Integrated Circuits， Guangdong University of Technology

School of Automation， Guangdong University of Technology

⁰