信息网络安全 ›› 2024, Vol. 24 ›› Issue (7): 983-992.doi: 10.3969/j.issn.1671-1122.2024.07.001

• 专题论文:物联网安全 • 上一篇    下一篇

一种车联网中的无证书匿名认证密钥协商协议

刘一丹, 马永柳(), 杜宜宾, 程庆丰   

  1. 信息工程大学网络空间安全学院,郑州 450001
  • 收稿日期:2024-03-27 出版日期:2024-07-10 发布日期:2024-08-02
  • 通讯作者: 马永柳 mayongliu1994@126.com
  • 作者简介:刘一丹(2000—),女,河南,博士研究生,主要研究方向为密码协议|马永柳(1994—),女,河南,讲师,硕士,主要研究方向为密码协议|杜宜宾(1981—),男,河南,讲师,博士,主要研究方向为密码学和人工智能安全|程庆丰(1979—),男,辽宁,教授,博士,主要研究方向为密码学和信息安全。
  • 基金资助:
    国家自然科学基金(61872449);河南省自然科学基金(242300421414)

A Certificateless Anonymous Authentication Key Agreement Protocol for VANET

LIU Yidan, MA Yongliu(), DU Yibin, CHENG Qingfeng   

  1. Institute of Cyberspace Security, Information Engineering University, Zhengzhou 450001, China
  • Received:2024-03-27 Online:2024-07-10 Published:2024-08-02

摘要:

在车联网中,各节点在开放的无线信道上通信,因此易受到恶意攻击,保障车辆通信过程中消息的完整性和身份的匿名性变得至关重要。针对现有的WZQ协议无法抵抗临时密钥泄露攻击问题,文章提出一种车联网中的无证书匿名认证密钥协商协议iWZQ。iWZQ采用无证书签名技术,解决了复杂的密钥存储和密钥托管问题,同时将身份认证与交通消息验证分离,避免了频繁检查消息撤销列表的问题。此外,通过可证明的安全理论和Scyther工具证明了文章所提协议的安全性。将文章所提协议与其他协议进行性能比较,结果表明,iWZQ在提高安全性的同时能够有效降低计算开销和通信开销。

关键词: 车联网, 无证书签名, 匿名性, 密钥协商协议

Abstract:

In the vehicular ad-hoc network (VANET), nodes communicate on open wireless channels, making them vulnerable to malicious attacks. Ensuring the integrity of message and anonymity of identities during vehicle communication has become crucial. In response to the problem that existing WZQ protocol cannot resist ephemeral key leakage attack, this article proposed a certificateless anonymous authentication key agreement protocol for VANET named iWZQ. iWZQ used certificateless signature technology to solve complex key storage and key escrow problems, and separated identity authentication and traffic message verification to avoid the problem of frequent checking of message revocation list. In addition, the security of this protocol has been proven using provable theory and Scyther tool. Comparing the proposed protocol with other protocols, the performance analysis results show that iWZQ effectively reduces computational time and communication costs while improving security.

Key words: VANET, certificateless signature, anonymity, key agreement protocol

中图分类号: