一种车联网中的无证书匿名认证密钥协商协议

doi:10.3969/j.issn.1671-1122.2024.07.001

摘要/Abstract

摘要：

在车联网中，各节点在开放的无线信道上通信，因此易受到恶意攻击，保障车辆通信过程中消息的完整性和身份的匿名性变得至关重要。针对现有的WZQ协议无法抵抗临时密钥泄露攻击问题，文章提出一种车联网中的无证书匿名认证密钥协商协议iWZQ。iWZQ采用无证书签名技术，解决了复杂的密钥存储和密钥托管问题，同时将身份认证与交通消息验证分离，避免了频繁检查消息撤销列表的问题。此外，通过可证明的安全理论和Scyther工具证明了文章所提协议的安全性。将文章所提协议与其他协议进行性能比较，结果表明，iWZQ在提高安全性的同时能够有效降低计算开销和通信开销。

关键词: 车联网, 无证书签名, 匿名性, 密钥协商协议

Abstract:

In the vehicular ad-hoc network (VANET), nodes communicate on open wireless channels, making them vulnerable to malicious attacks. Ensuring the integrity of message and anonymity of identities during vehicle communication has become crucial. In response to the problem that existing WZQ protocol cannot resist ephemeral key leakage attack, this article proposed a certificateless anonymous authentication key agreement protocol for VANET named iWZQ. iWZQ used certificateless signature technology to solve complex key storage and key escrow problems, and separated identity authentication and traffic message verification to avoid the problem of frequent checking of message revocation list. In addition, the security of this protocol has been proven using provable theory and Scyther tool. Comparing the proposed protocol with other protocols, the performance analysis results show that iWZQ effectively reduces computational time and communication costs while improving security.

Key words: VANET, certificateless signature, anonymity, key agreement protocol

中图分类号:

TP309

刘一丹, 马永柳, 杜宜宾, 程庆丰. 一种车联网中的无证书匿名认证密钥协商协议[J]. 信息网络安全, 2024, 24(7): 983-992.

LIU Yidan, MA Yongliu, DU Yibin, CHENG Qingfeng. A Certificateless Anonymous Authentication Key Agreement Protocol for VANET[J]. Netinfo Security, 2024, 24(7): 983-992.

图/表 10

图1

图2

图3

图4

图5

图6

图7

表1

表2

表3

参考文献 26

[1]	TAN Fuyuan. Research on Efficient and Secure Authentication Scheme in Vehicular Ad-Hoc Network[D]. Chongqing: Chongqing University of Posts and Telecommunications, 2018.
	谭富元. 车联网环境下高效安全认证方案的研究[D]. 重庆: 重庆邮电大学, 2018.
[2]	RAYA M, HUBAUX J P. The Security of Vehicular Ad Hoc Networks[C]// ACM. The 3rd ACM Workshop on Security of Ad Hoc and Sensor Networks. New York: ACM, 2005: 11-21.
[3]	CALANDRIELLO G, PAPADIMITRATOS P, HUBAUX J P, et al. Efficient and Robust Pseudonymous Authentication in VANET[C]// ACM. The 4th ACM International Workshop on Vehicular Ad Hoc Networks. New York: ACM, 2007: 19-28.
[4]	ZHANG Chenxi, LU Rongxing, LIN Xiaodong, et al. An Efficient Identity-Based Batch Verification Scheme for Vehicular Sensor Networks[C]// IEEE. IEEE INFOCOM 2008-The 27th Conference on Computer Communications. New York: IEEE, 2008: 246-250.
[5]	LEE C C, LAI Yanming. Toward a Secure Batch Verification with Group Testing for VANET[J]. Wireless Networks, 2013, 19(6): 1441-1449.
[6]	BAYAT M, BARMSHOORY M, RAHIMI M, et al. A Secure Authentication Scheme for VANETs with Batch Verification[J]. Wireless Networks, 2015, 21(5): 1733-1743.
[7]	AL-RIYAMI S S, PATERSON K G. Certificateless Public Key Cryptography[C]// Springer. Advances in Cryptology-ASIACRYPT 2003. Heidelberg: Springer, 2003: 452-473.
[8]	HORNG S J, TZENG S F, HUANG P H, et al. An Efficient Certificateless Aggregate Signature with Conditional Privacy-Preserving for Vehicular Sensor Networks[J]. Information Sciences, 2015, 317: 48-66.
[9]	LI Jiguo, YUAN Hong, ZHANG Yichen. Cryptanalysis and Improvement of Certificateless Aggregate Signature with Conditional Privacy-Preserving for Vehicular Sensor Networks[J]. Networks, 2015, 317: 48-66.
[10]	YAO Yingying, CHANG Xiaolin, LI Lin. CLAM: A Lightweight Certificateless Anonymous Authentication Mechanism for Vehicular Cloud Services[J]. Cyber-Physical Systems, 2018, 4(1): 17-38.
[11]	WANG Daxing, TENG Jikai. Probably Secure Cetificateless Aggregate Signature Algorithm for Vehicular Ad Hoc Network[J]. Journal of Electronics & Information Technology, 2018, 40(1): 11-17.
	王大星, 滕济凯. 车载网中可证安全的无证书聚合签名算法[J]. 电子与信息学报, 2018, 40(1): 11-17.
[12]	YANG Xiaodong, MA Tingchun, CHEN Chunlin, et al. Security Analysis and Improvement of Certificateless Aggregate Signature Scheme for Vehicular Ad Hoc Networks[J]. Journal of Electronics & Information Technology, 2019, 41(5): 1265-1270.
	杨小东, 麻婷春, 陈春霖, 等. 面向车载自组网的无证书聚合签名方案的安全性分析与改进[J]. 电子与信息学报, 2019, 41(5): 1265-1270.
[13]	ALI I, GERVAIS M, AHENE E, et al. A Blockchain-Based Certificateless Public Key Signature Scheme for Vehicle-to-Infrastructure Communication in VANETs[EB/OL]. (2019-08-21)[2024-03-15]. https://www.sciencedirect.com/science/article/abs/pii/S1383762119302103.
[14]	ZHONG Hong, HAN Shunshun, CUI Jie, et al. Privacy-Preserving Authentication Scheme with Full Aggregation in VANET[J]. Information Sciences, 2019, 476: 211-221. doi: 10.1016/j.ins.2018.10.021
[15]	KAMIL I A, OGUNDOYIN S O. On the Security of Privacy-Preserving Authentication Scheme with Full Aggregation in Vehicular Ad Hoc Network[J]. Security and Privacy, 2020, 3(3): 1-20.
[16]	CHEN Yulei, CHEN Jianhua. CPP-CLAS: Efficient and Conditional Privacy-Preserving Certificateless Aggregate Signature Scheme for VANETs[J]. IEEE Internet of Things Journal, 2022, 9(12): 10354-10365.
[17]	ZHOU Yanwei, XU Ran, QIAO Zirui, et al. An Anonymous and Efficient Multimessage and Multireceiver Certificateless Signcryption Scheme for VANET[J]. IEEE Internet of Things Journal, 2023, 10(24): 22823-22835.
[18]	WANG Zhaolong, ZHOU Yanwei, QIAO Zirui, et al. An Anonymous and Revocable Authentication Protocol for Vehicle-to-Vehicle Communications[J]. IEEE Internet of Things Journal, 2023, 10(6): 5114-5127.
[19]	LI Jiliang, CHOO K K R, ZHANG Weiguo, et al. EPA-CPPA: An Efficient, Provably-Secure and Anonymous Conditional Privacy-Preserving Authentication Scheme for Vehicular Ad Hoc Networks[J]. Vehicular Communications, 2018, 13: 104-113.
[20]	CSEH C. Architecture of the Dedicated Short-Range Communications (DSRC) Protocol[C]// IEEE. The 48th IEEE Vehicular Technology Conference. New York: IEEE, 2002: 2095-2099.
[21]	HUANG Xinyi, MU Yi, SUSILO W, et al. Certificateless Signature Revisited[C]// Springer. Proceedings of Australasian Conference on Information Security and Privacy. Heidelberg: Springer, 2007: 308-322.
[22]	POINTCHEVAL D, STERN J. Security Arguments for Digital Signatures and Blind Signatures[J]. Journal of Cryptology, 2000, 13(3): 361-396.
[23]	HE Debiao, ZEADALLY S, XU Baowen, et al. An Efficient Identity-Based Conditional Privacy-Preserving Authentication Scheme for Vehicular Ad Hoc Networks[J]. IEEE Transactions on Information Forensics and Security, 2015, 10(12): 2681-2691.
[24]	JIANG Shuo, CHEN Xue, CAO Yibo, et al. APKI: An Anonymous Authentication Scheme Based on PKI for VANET[C]// IEEE. 2022 7th International Conference on Computer and Communication Systems (ICCCS). New York: IEEE, 2022: 530-536.
[25]	MEI Qian, XIONG Hu, CHEN Jinhao, et al. Efficient Certificateless Aggregate Signature with Conditional Privacy Preservation in IoV[J]. IEEE Systems Journal, 2021, 15(1): 245-256.
[26]	WANG Shibin, YAO Nianmin. LIAP: A Local Identity-Based Anonymous Message Authentication Protocol in VANETs[J]. Computer Communications, 2017, 112: 154-164.

密码学操作	说明	时间/ms
${{T}_{bp}}$	双线性对操作	4.2110
${{T}_{sm}}$	椭圆曲线上群$G$中的标量乘法	0.4420
${{T}_{pa}}$	椭圆曲线上群$G$中的点加法	0.0018
${{T}_{h}}$	单向哈希函数操作	0.0001

协议	计算开销/ms		总开销/ms
协议	RSU	车辆	总开销/ms
文献[18]协议	$4.8718$	$3.9876$	8.8594
文献[24]协议	$7.7535$	$7.7535$	15.5070
文献[25]协议	$13.0753$	$0.4423$	13.5176
文献[26]协议	13.5172	1.3261	14.8433
iWZQ协议	$3.9822$	$4.4259$	8.4081

协议	第一次消息传输/B	第二次消息传输/B	第三次消息传输/B	总通信开销/B
文献[18]协议	84	124	164	372
文献[24]协议	204	204	—	408
文献[26]协议	124	104	124	352
iWZQ协议	84	124	124	332