摘要
无线传感器网络中大量节点都部署在不安全的环境中,为确保传感器节点提供数据信息服务时对隐私信息的保护,即仅为合法查询者提供数据查询服务,提出一种基于动态会话密钥的双向认证方案。方案中综合采用时间戳、hash函数和随机数等技术手段设计动态会话密钥,并使用祖冲之加密算法对查询请求信息加密和提供信息完整性认证,能够实现数据机密性、完整性和双向认证等安全功能。为验证所提方案的系统性能,搭建了由TelosB节点和网关构成的传感网实验系统并部署了相关实验。实验结果表明,感知节点和网关之间可互相认证且认证时间较短,并能抵御假冒攻击、信息重放、DoS攻击等传感网常见攻击。
This paper focused on a sensor network deployed over an insecure environment,which was expected to provide data service with sound preserving of user privacy. To this end,this paper proposed a mutual authentication protocol between sensor nodes and gateway nodes. This scheme adopted multiple security techniques against different security threats,such as timestamps against replay attacks,the ZUC encryption algorithm against data eavesdropping and unauthorized falsification. To verify the effectiveness and efficiency of this scheme,it implemented a TelosB-based wireless sensor testbed,in which all sensor nodes were equipped with this security scheme to facilitate mutual authentications between each other. The experiment results reveal that,this algorithm can not only resist the common attacks,such as the impersonation attack,replay attack and DoS attacks,but also show a sound network performance.
出处
《计算机应用研究》
CSCD
北大核心
2014年第8期2506-2509,共4页
Application Research of Computers
基金
新疆维吾尔自治区自然科学基金资助项目(2013211A012)