信息网络安全 ›› 2021, Vol. 21 ›› Issue (10): 83-89.doi: 10.3969/j.issn.1671-1122.2021.10.012

• 入选论文 • 上一篇    下一篇

一种面向物联网设备的口令认证密钥协商协议

肖帅1,2, 张翰林1(), 咸鹤群1, 陈飞1   

  1. 1.青岛大学计算机科学技术学院,青岛 266071
    2.贵州大学贵州省公共大数据重点实验室,贵阳 550025
  • 收稿日期:2021-05-31 出版日期:2021-10-10 发布日期:2021-10-14
  • 通讯作者: 张翰林 E-mail:hanlin@qdu.edu.cn
  • 作者简介:肖帅(1993—),男,山东,硕士研究生,主要研究方向为密钥认证协议|张翰林(1988—),男,山东,讲师,博士,主要研究方向为密码协议|咸鹤群(1979—),男,山东,副教授,博士,主要研究方向为密码学|陈飞(1984—),男,山东,副教授,博士,主要研究方向为云计算
  • 基金资助:
    国家自然科学基金青年基金(62102212);青岛市自主创新重大专项(21-1-2-21-XX)

A Password Authentication Key Agreement Protocol for IoT Devices

XIAO Shuai1,2, ZHANG Hanlin1(), XIAN Hequn1, CHEN Fei1   

  1. 1. College of Computer Science and Technology, Qingdao University, Qingdao 266071, China
    2. Guizhou Provincial Key Laboratory of Public Big Data, Guizhou University, Guiyang 550025, China
  • Received:2021-05-31 Online:2021-10-10 Published:2021-10-14
  • Contact: ZHANG Hanlin E-mail:hanlin@qdu.edu.cn

摘要:

建立高能效、高安全性的水下无线传感器网络(Underwater Wireless Sensor Network,UWSN)对于监控资源丰富的海洋、湖泊具有重要意义。而UWSN自身能量资源有限且水下无线通信能量消耗高,目前对无线通信的研究大多从低能耗出发,从而忽视安全问题。身份认证作为通信安全的第一道防线,在UWSN的安全交互中发挥着重要作用。文章提出一种新的基于口令的身份认证方案,该方案利用口令认证的优点来减少对公钥基础设施的依赖。利用哈希函数模拟密钥分配中心(Key Distribution Centre,KDC),可减少对KDC的依赖,避免额外的通信代价和单点失败,可实现更好的安全性。最后,对提出的认证密钥交换协议进行实现,并评估了认证方案的性能。

关键词: 水下无线传感器网络, 通信安全, 基于口令的身份认证, 认证密钥交换

Abstract:

Establishing an underwater wireless sensor network (UWSN) with high energy efficiency and high security is of great significance for monitoring resource-rich oceans and lakes. Due to the resource-constraint of UWSN and the high-energy consumption of underwater wireless communication, most of the current research on wireless communication starts with low energy consumption and ignores security issues. As the first line of defense for Communications security, identity authentication plays an important role in the secure interaction of UWSN. This paper proposes a new password-based identity authentication scheme for UWSN, which uses the advantages of password authentication to reduce the dependence on public key infrastructure. Utilizing the hash function simulation key distribution center (KDC) reduces the dependence on the KDC, which avoids additional communication costs and single point of failure, achieves a higher security. Finally, the proposed authentication key exchange protocol is implemented, and the performance of the authentication scheme is evaluated.

Key words: underwater wireless sensor network, communications security, password-based identity authentication, authenticated key exchange

中图分类号: