摘要
针对下一代高速铁路通信系统车地认证协议中根密钥泄露、通信双方未相互认证、难以抵抗拒绝服务攻击等问题,提出了一种基于交换测试粒子的半量子车地认证协商方案.首先采用半量子密钥分配方法对量子比特制备和测量生成安全会话密钥,解决了根密钥泄露问题.然后引入网络身份认证的交换测试粒子,利用量子力学密码技术实现通信双方共享秘密的一种强相互认证,可抵抗中间人攻击、拒绝服务攻击.最后利用基于信念的模态逻辑进行理论安全性验证和Scyther安全分析工具实验验证.结果表明:所提方法具有更高的安全性和更低的计算开销,能满足下一代铁路无线通信系统车地认证安全性和实时性的需求.
In order to solve the root key leakage problems train-to-ground authentication protocol of the high-speed railway communication system,the communication parties are not mutually authenticated and it is difficult to resist denial of server and other attacks,a semi-quantum train-to-ground authentication negotiation scheme based on identity identification was proposed.Firstly,the semi-quantum key distribution method was used to prepare and measure qubits to generate a secure session key,which solves the problem of root key leakage.Then,the test particle identification of network identity authentication was introduced.A strong mutual authentication of shared secrets between communication parties was achieved using quantum mechanical cryptography technology,which can resist man-in-the-middle attacks and denial of server attacks.Finally,the security of the theory was verified by the modal logic based on belief and experimental verification of the Scyther safety analysis tool.The results show that the proposed method has higher security and lower computing cost,and can meet the requirements of security and real-time performance of train and ground authentication in next generation railway wireless communication system.
作者
陈永
常婷
张冰旺
CHEN Yong;CHANG Ting;ZHANG Bingwang(School of Electronic and Information Engineering,Lanzhou Jiaotong University,Lanzhou 730070,China)
出处
《华中科技大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2024年第9期77-84,共8页
Journal of Huazhong University of Science and Technology(Natural Science Edition)
基金
国家自然科学基金资助项目(62462043,61963023)
兰州交通大学基础拔尖人才项目(2022JC36)
兰州交通大学重点研发项目(ZDYF2304)。
