面向物联网的三因子跨域签密访问控制方案
Three-Factor Cross-Domain Signcryption Access Control Scheme for IoT Environment
- 电子学报 2023年51卷第9期 页码:2578-2587
- 作者机构:
1.贵州大学计算机科学与技术学院,贵州贵阳 550025
2.贵州大学密码学与数据安全研究所,贵州贵阳 550025
3.贵州省公共大数据重点实验室,贵州贵阳 550025
4.中国科学技术大学信息科学与技术学院,安徽合肥 230026
- 作者简介:
[ "黄隆坤 男,1995年2月出生于贵州省黔西南布依族苗族自治州望谟县. 现为贵州大学计算机科学与技术学院硕士. 主要研究方向为密码学与数据安全、物联网安全.E-mail: longkunhuang@163.com" ]
[ "田有亮(通讯作者) 男,1982年11月出生于贵州省盘县. 现为贵州大学教授、博士生导师. 主要研究方向为算法博弈论、密码学与安全协议、大数据安全与隐私保护、区块链与电子货币.中国电子学会会员编号:E190029411M." ]
[ "谢洪涛 男,1983年11月出生. 现为中国科学技术大学特任教授、博士生导师. 主要从事多媒体内容安全和医学影像智能分析的研究.中国电子学会会员编号:E190029114M. E-mail: htxie@ustc.edu.cn" ]
- 基金信息:国家重点研发计划项目(2021YFB3101100);贵州省高层次创新型人才项目(黔科合平台人才[2020]6008);贵州省科技计划项目(黔科合平台人才[2020]5017);Science and Technology Program of Guiyang([2022]2-4)
DOI:10.12263/DZXB.20211348
中图分类号: TN918.4收稿:2021-10-08,
修回:2022-03-21,
纸质出版:2023-09-25
- 稿件说明:
移动端阅览
黄隆坤,田有亮,谢洪涛.面向物联网的三因子跨域签密访问控制方案[J].电子学报,2023,51(09):2578-2587.
HUANG Long-kun,TIAN You-liang,XIE Hong-tao.Three-Factor Cross-Domain Signcryption Access Control Scheme for IoT Environment[J].ACTA ELECTRONICA SINICA,2023,51(09):2578-2587.
黄隆坤,田有亮,谢洪涛.面向物联网的三因子跨域签密访问控制方案[J].电子学报,2023,51(09):2578-2587. DOI: 10.12263/DZXB.20211348.
HUANG Long-kun,TIAN You-liang,XIE Hong-tao.Three-Factor Cross-Domain Signcryption Access Control Scheme for IoT Environment[J].ACTA ELECTRONICA SINICA,2023,51(09):2578-2587. DOI: 10.12263/DZXB.20211348.
摘要
在5G的海量机器类通信(massive Machine Type Communication,mMTC)物联网环境下,存在跨安全域的公钥加密体制PKI(Public Key Infrastructure)的物联网用户对无证书加密体制CLC(CertificateLess Cryptosystem)的物联网设备跨域安全通信问题.本文基于用户口令、生物特征和用户智能设备等组成的三因子和国密SM2的加密和签名算法,提出三因子跨域签密的访问控制方案(Three-factor Cross-domain Signcryption Access Control scheme for IoT environment,TCSAC-IoT),用于在跨安全域的情况下实现PKI物联网用户对CLC物联网设备跨域安全通信.方案通过三因子跨域签密算法对PKI物联网用户进行认证,对合法的PKI物联网用户建立与CLC物联网设备之间的共享秘钥,避免非法用户对CLC物联网设备资源非法访问,并在真实或随机ROR(Real-Or-Random)模型下证明了该方案在DY(Dolev-Yao)模型和CK(Cantti-Krawczyk)模型下满足语义安全性,同时具有抗伪装攻击、抗重放攻击、抗中间人攻击、抗内部特权攻击和抗盗用或丢失PKI用户智能设备攻击,与类似方案对比分析的结果表明本方案有较低的计算开销和通信开销.
Abstract
In the massive machine type communication (mMTC) internet of Things environment of 5G
there is the problem of cross-domain secure communication from IoT users with public key infrastructure (PKI) encryption scheme to IoT devices with certificateless cryptosystem (CLC) encryption regime across security domains. In this paper
we propose a three-factor cross-domain signed-encryption access control scheme in the Internet of things (TCSAC-IoT) for PKI users to CLC devices with cross-domain secure communication based on the signcryption algorithm of three-factor and national secret SM2 composed of user passwords
biometrics and user smart device. The scheme authenticates PKI IoT users through a three-factor cross-domain signcryption algorithm
and grants legitimate PKI IoT users a shared secret key with CLC IoT devices to avoid illegal access to CLC IoT device resources by illegal users. It is also demonstrated under the real-or-random (ROR) model that the scheme satisfies semantic security under the Dolev-Yao (DY) model and Cantti-Krawczyk (CK) model
and is also resistant to spoofing attacks
replay attacks
man-in-the-middle attacks
internal privilege attacks and theft or loss of PKI user smart device attacks. The results of the analysis in comparison with similar schemes show that this scheme has low computational overhead and communication overhead.
关键词
Keywords
references
CHEN X M , NG D W K , YU W , et al . Massive access for 5G and beyond [J]. IEEE Journal on Selected Areas in Communications , 2021 , 39 ( 3 ): 615 - 637 .
ZHENG Y L . Digital signcryption or how to achieve cost(signature & encryption) << cost(signature) + cost(encryption) [C]// CRYPTO'97: Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology . Berlin : Springer , 1997 : 165 - 179 .
CAO J , MA M D , LI H , et al . A survey on security aspects for 3GPP 5G networks [J]. IEEE Communications Surveys & Tutorials , 2020 , 22 ( 1 ): 170 - 195 .
SUN Y X , LI H . Efficient signcryption between TPKC and IDPKC and its multi-receiver construction [J]. Science China Information Sciences , 2010 , 53 ( 3 ): 557 - 566 .
AN J H , DODIS Y , RABIN T . On the security of joint signature and encryption [C]// Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques: Advances in Cryptology . Berlin : Springer , 2002 : 83 - 107 .
LI F G , XIONG P . Practical secure communication for integrating wireless sensor networks into the Internet of Things [J]. IEEE Sensors Journal , 2013 , 13 ( 10 ): 3677 - 3684 .
LI F G , ZHENG Z H , JIN C H . Secure and efficient data transmission in the Internet of Things [J]. Telecommunication Systems , 2016 , 62 ( 1 ): 111 - 122 .
RAVEENDRANATH S , ANEESH A . Efficient multi-receiver heterogenous signcryption [C]// 2016 International Conference on Wireless Communications, Signal Processing and Networking (WiSPNET) . Piscataway : IEEE , 2016 : 1693 - 1697 .
NIU S F , LI Z B , WANG C F . Privacy-preserving multi-party aggregate signcryption for heterogeneous systems [C]// International Conference on Cloud Computing and Security . Cham : Springer , 2017 : 216 - 229 .
TING P Y , TSAI J L , WU T S . Signcryption method suitable for low-power IoT devices in a wireless sensor network [J]. IEEE Systems Journal , 2018 , 12 ( 3 ): 2385 - 2394 .
LI F G , HAN Y N , JIN C H . Practical access control for sensor networks in the context of the Internet of Things [J]. Computer Communications , 2016 , 89/90 : 154 - 164 .
LI S J , TAO F S , SHI T . Security analysis and improvement of hybrid signcryption scheme based on heterogeneous system [C]// 2019 14th International Conference on Computer Science & Education (ICCSE) . Piscataway : IEEE , 2019 : 840 - 845 .
牛淑芬 , 杨喜艳 , 王彩芬 , 等 . 基于异构密码系统的混合群组签密方案 [J]. 电子与信息学报 , 2019 , 41 ( 5 ): 1180 - 1186 .
NIU S F , YANG X Y , WANG C F , et al . Hybrid group signcryption scheme based on heterogeneous cryptosystem [J]. Journal of Electronics & Information Technology , 2019 , 41 ( 5 ): 1180 - 1186 . (in Chinese)
SAEED M E S , LIU Q Y , TIAN G Y , et al . HOOSC: Heterogeneous online/offline signcryption for the Internet of Things [J]. Wireless Networks , 2018 , 24 ( 8 ): 3141 - 3160 .
LUO M , WEN Y L , HU X T . Practical data transmission scheme for wireless sensor networks in heterogeneous IoT environment [J]. Wireless Personal Communications , 2019 , 109 ( 1 ): 505 - 519 .
MANDAL S , BERA B , SUTRALA A K , et al . Certificateless-signcryption-based three-factor user access control scheme for IoT environment [J]. IEEE Internet of Things Journal , 2020 , 7 ( 4 ): 3184 - 3197 .
MALANI S , SRINIVAS J , DAS A K , et al . Certificate-based anonymous device access control scheme for IoT environment [J]. IEEE Internet of Things Journal , 2019 , 6 ( 6 ): 9762 - 9773 .
DOLEV D , YAO A . On the security of public key protocols [J]. IEEE Transactions on Information Theory , 1983 , 29 ( 2 ): 198 - 208 .
CANETTI R , KRAWCZYK H . Universally composable notions of key exchange and secure channels [C]// Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques: Advances in Cryptology . Berlin : Springer , 2002 : 337 - 351 .
ABDALLA M , FOUQUE P A , POINTCHEVAL D . Password-based authenticated key exchange in the three-party setting [C]// International Workshop on Public Key Cryptography . Berlin : Springer , 2005 : 65 - 84 .
WANG D , CHENG H B , WANG P , et al . Zipf's law in passwords [J]. IEEE Transactions on Information Forensics and Security , 2017 , 12 ( 11 ): 2776 - 2791 .
Srinivas J , Das A K , Kumar N , et al . TCALAS: Temporal credential-based anonymous lightweight authentication scheme for Internet of drones environment [J]. IEEE Transactions on Vehicular Technology , 2019 , 68 ( 7 ): 6903 - 6916 .
WU L B , WANG J , CHOO K K R , et al . Secure key agreement and key protection for mobile device user authentication [J]. IEEE Transactions on Information Forensics and Security , 2019 , 14 ( 2 ): 319 - 330 .
TAO F S , SHI T , LI S J . Provably secure cross-domain authentication key agreement protocol based on heterogeneous signcryption scheme [C]// 2020 IEEE 4th Information Technology, Networking, Electronic and Automation Control Conference . Piscataway : IEEE , 2020 : 2261 - 2266 .
0
浏览量
12
下载量
0
CSCD
- 网络PDF下载
- Meta-XML下载
- BibTeX下载
- Endnote下载
- RefMan 下载
- NoteExpress下载
- NoteFirst下载
关联资源
相关文章
相关作者
相关机构
- 技术支持由北京北大方正电子有限公司提供 京ICP备09064830号-19
京公网安备11010802024621 - 本系统建议在Chrome、 IE9+ 以上版本浏览器阅读本站内容,360浏览器请切换至极速模式
- Cookies帮助我们提供服务并提供个性化体验。使用本网站,即表示您同意我们使用Cookies