摘要
针对节点访问中身份隐私和数据安全问题,提出一种适用于物联网环境下简单、高效的身份隐藏认证方法。结合双线性映射算法和基于身份匿签密(IBHigncryption)进行构造,利用用户口令和智能卡完成与传感器节点的双重身份认证和会话密钥协商,实现双方安全通信并确保只有合法终端用户才能获取节点收集的实时数据。提出的方法在随机预言模型下可证明语义安全,提供身份隐藏、随机值泄露保护和可否认性等安全特性,与现有同类研究相比,明显降低了传感器节点的计算量和通信量,能更好地满足物联网应用需求。
For the problems of identity privacy and data security in the process of node access,this paper proposes a simplicity and efficiency identity-concealed authentication method for IoT,which utilizes bilinear pairings and identity-based higncryption(IBHigncryption)to complete identity authentication and secure session key agreement between end-users and nodes by password and smart card.The method realizes secure communication and ensures that only valid end-users can access the real-time data gathered by sensor nodes.The proposed method can prove semantic security under a random oracle model,providing security features such as identity hiding,random value leakage protection,and repudiation.Compared with similar existing methods,the proposed method significantly reduces the amount of calculation and communication of sensor nodes,and can better meet the requirements of IoT application.
作者
赵宗渠
郭小杰
殷明辉
汤永利
ZHAO Zongqu;GUO Xiaojie;YIN Minghui;TANG Yongli(College of Computer Science and Technology,Henan Polytechnic University,Jiaozuo 454000,P.R.China)
出处
《重庆邮电大学学报(自然科学版)》
CSCD
北大核心
2023年第2期343-351,共9页
Journal of Chongqing University of Posts and Telecommunications(Natural Science Edition)
基金
河南省高校科技创新团队支持计划(20IRTSTHN013)
“陕西省信息通信网络及安全重点实验室”开放课题(ICNS202006)
河南理工大学青年骨干教师资助计划(2018XQG-10)。
关键词
物联网
传感器
身份认证
隐私保护
internet of things
sensors
identity authentication
privacy-preserving