信息网络安全 ›› 2021, Vol. 21 ›› Issue (4): 49-61.doi: 10.3969/j.issn.1671-1122.2021.04.006

• 技术研究 • 上一篇    下一篇

基于假名的智能交通条件隐私保护认证协议

王健1(), 赵曼莉1,2, 陈志浩3, 石波3   

  1. 1.北京交通大学智能交通数据安全与隐私保护技术北京市重点实验室,北京 100044
    2.中国农业银行网络金融部,北京 100005
    3.北京计算机技术及应用研究所,北京 100854
  • 收稿日期:2020-12-03 出版日期:2021-04-10 发布日期:2021-05-14
  • 通讯作者: 王健 E-mail:wangjian@bjtu.edu.cn
  • 作者简介:王健(1975—),男,山东,副教授,博士,主要研究方向为网络安全、密码应用|赵曼莉(1993—),女,河北,硕士,主要研究方向为区块链及隐私保护|陈志浩(1982—),男,福建,研究员,硕士,主要研究方向为信息安全|石波(1988—),男,江苏,高级工程师,硕士,主要研究方向为信息安全
  • 基金资助:
    国家自然科学基金(61672092);山东省重大科技创新工程(2019JZZY020128)

An Authentication Scheme for Conditional Privacy Preserving Based on Pseudonym in Intelligent Transportation

WANG Jian1(), ZHAO Manli1,2, CHEN Zhihao3, SHI Bo3   

  1. 1. Beijing Key Laboratory of Security and Privacy in Intelligent Transportation, Beijing Jiaotong University, Beijing 100044, China
    2. Internet Finance Department, Agricultural Bank of China, Beijing 100005, China
    3. Beijing Institute of Computer Technology and Applications, Beijing 100854, China
  • Received:2020-12-03 Online:2021-04-10 Published:2021-05-14
  • Contact: WANG Jian E-mail:wangjian@bjtu.edu.cn

摘要:

在智能交通、无人驾驶等场景中,车辆节点与路边设施进行数据交换以实现车路协同,有助于提高交通安全、缓解交通拥堵。但该场景下的数据交换面临很多安全问题,隐私泄露是其中的主要安全风险之一。现有智能交通隐私保护方案多涉及复杂度较高的运算或需配置高成本的防篡改设备,效率较低,不能满足无人驾驶等智能交通应用的实时要求。为此,文章提出一种轻量级基于假名的条件隐私保护认证协议,该协议包括基于变色龙哈希的身份认证与基于椭圆曲线的消息认证,实现了车辆节点在数据交换过程中的匿名性与可追踪性,并可抵抗多种安全攻击。性能分析表明,该协议在计算、通信及存储等方面的开销均优于对比方案,在智能交通场景下的可行性更强。

关键词: 智能交通, 假名, 条件隐私保护, 身份认证, 消息认证

Abstract:

In scenarios such as intelligent transportation and driverless driving, vehicles exchange data with road side units to realize vehicle-road coordination, which helps to improve traffic safety as well as alleviate traffic congestion. However, there are still many security problems when exchanging data, among which privacy disclosure is the main security problem it is suffering now. Most existing privacy preserving schemes, requiring computations of high complexity or tamper-proof devices of high-cost, are inefficient and cannot meet the real-time requirements of intelligent transportation applications such as driverless driving. An authentication protocol for conditional privacy preservation based on pseudonym has been proposed, including identity authentication based on chameleon Hash function and message authentication based on elliptic curve. It has been proved that the proposed scheme realizes anonymity and traceability for vehicles in the process of data exchange, and is able to resist various security attacks. The performance analysis shows that this scheme is more feasible under intelligent transportation than compared ones in performance of computing, communication and storage overhead.

Key words: intelligent transportation, pseudonym, conditional privacy preserving, identity authentication, message authentication

中图分类号: