物联网环境下的身份认证方案

An Identity Authentication Scheme on IoT

针对传统的身份认证技术存在安全性不高、效率低等缺陷,提出一种基于物联网的移动终端身份认证方案。该方案在加解密过程中使用了二维码技术,使用对称加密算法和动态密钥来保证二维码生成信息的安全性,通过二维码作为信息载体以及动态密钥来实现移动终端的动态认证,对二维码的双融合加密增强了传输安全性。分析证明,提出的方案无需第三方,具有架构简单、高安全性和自适应性。提出的二维码和传统加密技术的融合为物联网终端的身份认证问题提供了一种新的思路,同时利于物联网的安全发展。

In order to solve the shortcomings of traditional identity authentication technology, such as low security, low efficiency, a mobile terminal identity authentication scheme based on IoT environment is proposed. The QR code technology is used for identity authentication in the IoT environment, to involve the encoding and decoding process, in view of its security, the symmetric encryption algorithm and dynamic key are used to encrypt the information of generating QR code. The dynamic authentication of the mobile terminal is realized by using the QR code as the information transmission carrier, combining the dynamic encryption key, and the security performance of the two encrypted QR code is far more than a single encrypted QR code. According to the security analysis, the scheme has simple structure and independent to third party equipment, which has high security and adaptability. The fusion of QR code and traditional encryption technology provides a new way of thinking for the identity authentication based on the IoT environment, and also promotes the development of IoT security.