摘要
目前传统物联网系统存在着信任缺失、数据泄露和篡改等安全性问题,这对存在于系统中的设备来说是极大的风险。文章设计了一种基于区块链的物联网设备匿名认证方案,使用以太坊作为物联网系统数据存储层,在以太坊部署用于管理和认证设备的智能合约,使用非对称加密技术唯一标识设备身份,抓取设备关键元信息构造默克尔树并将根值存储至区块链中。系统评估证明,该方案中注册设备的时间开销与传统方案差异较小,同时实现了高性能的设备身份信息认证。系统在去中心化存储、匿名性、不可篡改等安全性方面也有显著提升。
At present,the traditional IoT system has security problems such as lack of trust,data leakage,and tampering,which is a great risk to the devices in the system.This paper designs an anonymous authentication method for IoT devices based on blockchain,using Ethereum as the data storage layer of the IoT system,and deploying smart contracts for managing and authenticating devices in Ethereum.The method uses asymmetric encryption technology to uniquely identify the device identity,captures the critical metainformation of the device,constructs a Merkel Tree,and stores the root value in the blockchain.The system evaluation shows that the time cost of registering devices in this method is less different from that in traditional schemes,and the high-performance authentication of device identity information is achieved.The system has also significantly improved security in terms of decentralized storage,anonymity,and tamper resistance.
作者
陈然
宋铁成
胡静
Chen Ran;Song Tiecheng;Hu Jing(School of Information Science and Engineering,Southeast University,Nanjing 211102,China)
出处
《信息化研究》
2022年第5期16-21,共6页
INFORMATIZATION RESEARCH
基金
国家重点研发计划(2020YFB1600104)
江苏省重点研发计划(BE2020084-2)
关键词
以太坊
物联网
匿名认证
非对称加密
默克尔树
Ethereum
Internet of Things
anonymous authentication
asymmetric encryption
Merkle Tree
