车联网中基于无证书聚合签名的条件隐私保护批量认证方案

A Conditional Privacy-Preserving Batch Authentication Scheme Based on Certificateless Aggregate Signature for VANETs

在开放式无线通信模式和复杂的通信环境下,基于物联网技术构成的车联网面临着更多的内外部恶意攻击和入侵,确保车联网中通信安全的消息认证方案不仅需对用户提供信息安全和个人隐私的双重保障,而且需具有高效的认证过程.本文提出了一个基于无证书聚合签名的条件隐私保护批量认证方案.基于无证书公钥密码学,利用聚合技术实现了车联网环境下的批量认证,提高了消息认证效率.满足了条件隐私保护、不可关联性等安全需求,能抵抗聚合认证过程中面临的合谋攻击,适用于V2V、V2I两种通信模式.未采用计算消耗较高的Map-to-Point哈希函数和双线性对操作,在节约成本和提高计算效率方面具有潜在的优势.在随机预言模型下可以规约到ECDLP难题,避免了对理想防篡改装置的强假设,计算成本和通信成本低于其他方案,在车联网应用环境中具有较好的实用价值.

In an open wireless communication mode and complex communication environment,the vehicular ad hoc networks(VANETs)based on Internet of Things(IoT)technology face more internal and external malicious attacks and intrusions.Ensuring communication security in VANETs requires an efficient message authentication scheme that provides dual protection of information secu-rity and personal privacy for users.This paper proposes a batch authentication scheme with conditional privacy-preserving based on certificateless aggregate signatures.By using the aggregation technology based on certificateless public key cryptography,the efficiency of message authentication in vehic-ular ad hoc networks is improved.This scheme satisfies security requirements such as conditional privacy-preserving and unlinkability,and can resist collusion attacks as well during the aggregation authentication process,hence is applicable to both V2V and V2I communication modes.This paper does not use computationally expensive Map-to-Point hash functions and bilinear pairing operations,hence has the advantages in cost saving and computational efficiency.Under the random oracle model,the proposed scheme can be reduced to the ECDLP problem,avoiding the strong assumption of ideal tamper-resistant devices(TPD).Its computational and communication costs are lower than those of other existing schemes,making it highly practical for the application environment of VANETs.