摘要
针对移动终端计算能力较低和存储能力有限的问题,提出了适用于移动边缘计算环境的轻量级身份认证协议.该协议将密码学与物理层的安全保护技术相结合,利用对称密码体制降低移动终端在认证过程中的计算复杂度,以少量的计算量和较低的信息存储量完成移动终端与边缘服务器的相互认证与密钥协商,并且移动终端只需一次注册便可在移动边缘计算环境中随机漫游.安全性分析表明,该协议满足前向安全性、抗重放攻击性、抗中间人攻击性等安全特性.仿真结果表明,与其他认证方案相比,该方案在通信和计算成本方面有较好的性能优势.
Aiming at the problems of low computing power and limited storage capacity of mobile terminals,a lightweight identity authentication protocol suitable for mobile edge computing environments is proposed. The protocol combines cryptography with physical layer security protection technology,uses a symmetric cryptosystem to reduce the computational complexity of the mobile terminal in the authentication process,and completes the mutual authentication and key negotiation between the mobile terminal and the edge server with a small amount of calculation and low information storage. Mobile terminals can roam randomly in the mobile edge computing environment with only one registration. Security analysis shows that the protocol satisfies the security features of forward security,anti-replay attacks,and anti-man-in-themiddle attacks. Simulation shows that,compared with other authentication schemes,this scheme has better performance advantages in terms of communication and calculation costs.
作者
薛建彬
白子梅
XUE Jian-bin;BAI Zi-mei(School of Computer and Communication,Lanzhou University of Technology,Lanzhou 730050,China)
出处
《北京邮电大学学报》
EI
CAS
CSCD
北大核心
2021年第1期110-116,共7页
Journal of Beijing University of Posts and Telecommunications
基金
国家自然科学基金项目(61841107,61461026)。
关键词
移动边缘计算
身份认证
物理层安全
漫游
数据安全
mobile edge computing
identity authentication
physical-layer security
roaming
data security
