面向V2I通信的异构跨域条件隐私保护环签密方案

doi:10.3969/j.issn.1671-1122.2024.07.002

摘要/Abstract

摘要：

V2I通信是车载自组织网络的重要组成部分。确保在V2I中消息的安全传输一直是近年来研究人员研究的热点，提出了各种适用于V2I通信的条件隐私保护方案。然而，现有大多数基于环签密的方案中，普遍的假设是发送者和接收者都必须处于相同的密码体制和使用相同系统参数的同一域中。随着通信场景的复杂化，这种假设存在局限性，并且大多数基于环签密的方案未能满足已知临时会话密钥安全。为了解决这些问题，文章提出了一种面向V2I通信的异构跨域条件隐私保护环签密方案。该方案实现了无证书密码体制中的车辆到公钥基础设施密码体制中的基础设施的跨域通信。在随机预言机模型中进行了严格安全性证明，结果显示文章方案满足机密性和不可伪造性。与4种提供类似功能的方案进行比较分析，文章方案具有最低的计算成本和跟踪成本。

关键词: 异构, 跨域, 车辆与基础设施, 条件隐私, 环签密

Abstract:

The vehicles-to-infrastructure (V2I) communication is an important component of vehicle self-organizing networks. Ensuring secure transmission of messages in V2I has always been a focus of research, and various conditional privacy protection schemes suitable for V2I communication have been proposed in recent years. However, in most existing ring signcryption-based schemes, the common assumption is that both the sender and receiver must be within the same cryptographic system and use the same system parameters within the same domain. With the complexity of communication scenarios, this assumption has limitations, and most signcryption-based schemes fail to meet the known temporary session key security. To address these issues, we proposed a heterogeneous cross-domain conditional privacy protection ring signcryption scheme for V2I communication. Our scheme enabled cross-domain communication between vehicles in certificateless cryptography (CLC) and infrastructure in Public Key Infrastructure (PKI). In the Random Oracle Model (ROM), our scheme satisfied confidentiality and unforgeability through rigorous security proofs. Compared with four schemes that provide similar functions, our scheme has the lowest computing cost and tracking cost.

Key words: heterogeneous, cross-domain, vehicle-to-infrastructure, conditional privacy, ring signcryption

中图分类号:

TP309

罗铭, 詹骐榜, 邱敏蓉. 面向V2I通信的异构跨域条件隐私保护环签密方案[J]. 信息网络安全, 2024, 24(7): 993-1005.

LUO Ming, ZHAN Qibang, QIU Minrong. A Heterogeneous Cross-Domain Conditional Privacy Protection Ring Signcryption Scheme for V2I Communication[J]. Netinfo Security, 2024, 24(7): 993-1005.

图/表 8

图1

表1

表2

表3

表4

图2

图3

表5

参考文献 31

[1]	YUAN Xueliang, LIU Xin, ZUO Jian. The Development of New Energy Vehicles for a Sustainable Future: A Review[J]. Renewable and Sustainable Energy Reviews, 2015, 42: 298-305.
[2]	KENNEY J B. Dedicated Short-Range Communications (DSRC) Standards in the United States[J]. Proceedings of the IEEE, 2011, 99(7): 1162-1182.
[3]	JIN Chunhua. An Efficient Heterogeneous Signcryption for Smart Grid[EB/OL]. (2018-12-18)[2024-03-20]. https://doi.org/10.1371/journal.pone.0208311.
[4]	PAN Xiangyu, JIN Yuqiao, WANG Ziqing, et al. A Pairing-Free Heterogeneous Signcryption Scheme for Unmanned Aerial Vehicles[J]. IEEE Internet of Things Journal, 2022, 9(19): 19426-19437.
[5]	NIU Shufen, SHAO Honglin, HU Ying, et al. Privacy-Preserving Mutual Heterogeneous Signcryption Schemes Based on 5G Network Slicing[J]. IEEE Internet of Things Journal, 2022, 9(19): 19086-19100.
[6]	KANG Jiawen, YU Rong, HUANG Xumin, et al. Privacy-Preserved Pseudonym Scheme for Fog Computing Supported Internet of Vehicles[J]. IEEE Transactions on Intelligent Transportation Systems, 2017, 19(8): 2627-2637.
[7]	QI Jiayu. A Pseudonym-Based Certificateless Privacy-Preserving Authentication Scheme for VANETs[EB/OL]. (2022-10-12)[2024-03-20]. https://doi.org/10.1016/j.vehcom.2022.100535.
[8]	GENC Y. ELCPAS: A New Efficient Lightweight Certificateless Conditional Privacy Preserving Authentication Scheme for IoV[EB/OL]. (2022-11-17)[2024-03-20]. https://doi.org/10.1016/j.vehcom.2022.100549.
[9]	GORDON S D, KATZ J, VAIKUNTANATHAN V. A Group Signature Scheme from Lattice Assumptions[C]// Springer. Advances in Cryptology-ASIACRYPT 2010: 16th International Conference on the Theory and Application of Cryptology and Information Security. Heidelberg: Springer, 2010: 395-412.
[10]	EZERMAN M F, LEE H T, LING San, et al. Provably Secure Group Signature Schemes from Code-Based Assumptions[J]. IEEE Transactions on Information Theory, 2020, 66(9): 5754-5773.
[11]	DEVIDAS S, RAO Y S, REKHA N R. A Decentralized Group Signature Scheme for Privacy Protection in a Blockchain[J]. International Journal of Applied Mathematics and Computer Science, 2021, 31(2): 353-364.
[12]	LIU J K, AU M H, SUSILO W, et al. Linkable Ring Signature with Unconditional Anonymity[J]. IEEE Transactions on Knowledge and Data Engineering, 2013, 26(1): 157-165.
[13]	ALBERTO T W A, STENINFELD R, SAKZAD A, et al. Post-Quantum One-Time Linkable Ring Signature and Application to Ring Confidential Transactions in Blockchain (Lattice RingCT v1. 0)[C]// Springer. Information Security and Privacy:23rd Australasian Conference, ACISP 2018. Heidelberg: Springer, 2018: 558-576.
[14]	YU Huifang. Certificateless Multi-Source Elliptic Curve Ring Signcryption for Cloud Computing[EB/OL]. (2023-03-07)[2024-03-20]. https://doi.org/10.1016/j.jisa.2023.103449.
[15]	YUAN Chao, ZHANG Wenfang, WANG Xiaomin. EIMAKP: Heterogeneous Cross-Domain Authenticated Key Agreement Protocols in the EIM System[J]. Arabian Journal for Science and Engineering, 2017, 42: 3275-3287.
[16]	JIANG Xin, LIU Mingzhe, YANG Chen, et al. A Blockchain-Based Authentication Protocol for WLAN Mesh Security Access[J]. Computers, Materials & Continua, 2019, 58(1): 45-59.
[17]	GONG Bei, ZHENG Guiping, WAQAS M, et al. LCDMA: Lightweight Cross-Domain Mutual Identity Authentication Scheme for Internet of Things[J]. IEEE Internet of Things Journal, 2023, 10(14): 12590-12602.
[18]	RIVEST R L, SHAMIR A, TAUMAN Y. How to Leak a Secret[C]// Springer. Advances in Cryptology—ASIACRYPT 2001: 7th International Conference on the Theory and Application of Cryptology and Information Security Gold Coast. Heidelberg: Springer, 2001: 552-565.
[19]	LIU D Y W, LIU J K, MU Yi, et al. Revocable Ring Signature[J]. Journal of Computer Science and Technology, 2007, 22: 785-794.
[20]	FUJISAKI E, SUZUKI K. Traceable Ring Signature[C]// Springer. International Workshop on Public Key Cryptography. Heidelberg: Springer, 2007: 181-200.
[21]	LIANG Weibiao. LRS_PKI: A Novel Blockchain-Based PKI Framework Using Linkable Ring Signatures[EB/OL]. (2023-09-25)[2024-03-20]. https://doi.org/10.1016/j.comnet.2023.110043.
[22]	HUANG Xinyi, SUSILO W, MU Yi, et al. Identity-Based Ring Signcryption Schemes: Cryptographic Primitives for Preserving Privacy and Authenticity in the Ubiquitous World[C]// IEEE. 19th International Conference on Advanced Information Networking and Applications (AINA'05) Volume 1 (AINA papers). New York: IEEE, 2005: 649-654.
[23]	LIU Feng, WANG Qi. IBRS: An Efficient Identity-Based Batch Verification Scheme for VANETs Based on Ring Signature[C]// IEEE. 2019 IEEE Vehicular Networking Conference (VNC). New York: IEEE, 2019: 1-8.
[24]	CAI Ying, ZHANG Hao, FANG Yuguang. A Conditional Privacy Protection Scheme Based on Ring Signcryption for Vehicular Ad Hoc Networks[J]. IEEE Internet of Things Journal, 2020, 8(1): 647-656.
[25]	DU Hongzhen, WEN Qiaoyan, ZHANG Shanshan, et al. An Improved Conditional Privacy Protection Scheme Based on Ring Signcryption for VANETs[J]. IEEE Internet of Things Journal, 2023, 10(20): 17881-17892.
[26]	LUO Ming, ZHOU Yanzibo. An Efficient Conditional Privacy-Preserving Authentication Protocol Based on Generalized Ring Signcryption for VANETs[J]. IEEE Transactions on Vehicular Technology, 2022, 71(9): 10001-10015.
[27]	BOUAKKAZ S. A Certificateless Ring Signature Scheme with Batch Verification for Applications in VANET[EB/OL]. (2020-10-26)[2024-03-20]. https://doi.org/10.1016/j.jisa.2020.102669.
[28]	GUO Rui. An Efficient Certificateless Ring Signcryption Scheme with Conditional Privacy-Preserving in VANETs[EB/OL]. (2022-06-26)[2024-03-20]. https://doi.org/10.1016/j.sysarc.2020.102633.
[29]	LIU Shuanggen, LIU Zhentao, LIANG Jueqin, et al. Certificateless Ring Signcryption Scheme with Conditional Privacy Protection in Smart Grid[C]// Springer. International Conference on Frontiers in Cyber Security. Heidelberg: Springer, 2023: 189-204.
[30]	POINTCHEVAL D, STERN J. Security Arguments for Digital Signatures and Blind Signatures[J]. Journal of cryptology, 2000, 13: 361-396.
[31]	DE C A, IOVINO V. JPBC: Java Pairing Based Cryptography[C]// IEEE. 2011 IEEE Symposium on Computers and Communications (ISCC). New York: IEEE, 2011: 850-855.

符号	描述
ID_vi	车辆i的身份
ID_INi	基础设施i的身份
s	KGC的主私钥
P_pub	KGC的主公钥
x_i	车辆i的秘密值
X_i	车辆i的部分公钥
d_i	车辆i的部分私钥
Y_i	车辆i的另一部分公钥
csk_i	车辆i的完整私钥
CPK_i	车辆i的完整公钥
sk_i	基础设施i的私钥
PK_i	基础设施i的公钥
R_i	每个R_i对应于一个指定的车辆身份ID_vi
Tag	跟踪标记
u	正整数
θ	签名
δ	密文
h_1,_i	根据ID_Vi, X_i, Y_i, P_pub通过哈希函数H₁得到的值(h_2,i, h_3,i, h_4,i的描述类似于h_1,i)

软、硬件	规格
CPU	Intel(R) Core(TM) i7-7700HQ
RAM	16 GB
操作系统	64-bit Windows 10
密码库	JPBC库^[31]

符号	符号表示的含义	执行时间/ms
T_e	一个双线性配对操作	6.013
T_p	一个标量乘法在G₁群上	10.766
T_ecc	一个标量乘法在G群上	2.659

方案	签密	解签密	追踪
文献[29]方案	(n+1)T_p	2T_e+nT_p	2nT_e
文献[24]方案	T_e+(3n+2)T_p	3T_e+nT_p	2nT_p
文献[28]方案	(4n+3)T_ecc	(4n+2)T_ecc	3nT_ecc
文献[25]方案	T_e+(n+3)T_p	2T_e+nT_p	2nT_p+2nT_e
本文方案	(2n+4)T_ecc	(2n+1)T_ecc	nT_ecc

方案	SA-1	SA-2	SA-3	SA-4	SA-5	SA-6	SA-7	异构	跨域
文献[29]方案	Y	N	Y	Y	N	Y	Y	N	N
文献[24]方案	Y	Y	N	N	N	N	Y	N	N
文献[28]方案	Y	Y	Y	Y	N	Y	Y	N	N
文献[25]方案	Y	Y	Y	Y	Y	Y	Y	N	N
本文方案	Y	Y	Y	Y	Y	Y	Y	Y	Y