V2G中基于区块链的在线/离线跨域身份认证方案

doi:10.3969/j.issn.1671-1122.2024.04.009

摘要/Abstract

摘要：

针对车辆到电网（Vehicle to Grid，V2G）中进行跨域身份认证时容易造成实时性较差及隐私泄露的问题，文章提出了一种基于区块链的高效跨域身份认证方案。首先，该方案采用了在线/离线签名技术，在车辆空闲时进行离线签名，当车辆在其他区域进行跨域认证时只需在离线签名的基础上进行在线签名，降低了系统的计算开销，缩短了认证时间，并使用聚合签名及验证技术，引入批量验证的思想，提高了验证效率。然后，使用智能合约技术，在区块链上存储车辆公钥及离线签名等信息，降低了车辆的存储负担，也保证了密钥的安全性。最后，通过与其他方案对比和实验仿真，结果表明，该方案减少了签名及验证的时间开销，并且使用智能合约在区块链上存储信息的开销较小。基于q-Strong Diff ie-Hellman问题的难解性，证明了该方案是安全的，并且满足所有期望和安全要求。

关键词: 车辆到电网, 跨域认证, 在线/离线签名, 聚合签名, 区块链

Abstract:

Aiming at the problems of poor real-time and privacy leakage easily caused by cross-domain identity authentication in Vehicle to Grid, this paper proposed an efficient cross-domain authentication scheme based on blockchain. Firstly, it adopted online/offline signature technology to sign, offline signature when the vehicle was not in use, when the vehicle was in another area for cross-domain authentication only in the offline signature on the basis of the online signature, reduced the system's computational overhead, shortened the authentication time; it used aggregated signature and verification technology, and introduced the idea of batch verification, which improved the verification efficiency. Then, the use of smart contract technology to store the vehicle public key and offline signature and other information on the blockchain reduced the storage burden of the vehicle and also protected the security of the key. Finally, by comparing with other schemes and experimental simulations, the results show that the scheme reduces the time overhead of signing and verification and has less overhead of storing information on the blockchain using smart contracts. Based on the intractability of the q-Strong Diffie-Hellman problem, the scheme is proved to be semantically secure and is shown to fulfill all expectations and security requirements.

Key words: V2G, cross-domain authentication, online/offline signature, aggregate signature, blockchain

中图分类号:

TP309

石润华, 杨婧怡, 王鹏博, 刘华伟. V2G中基于区块链的在线/离线跨域身份认证方案[J]. 信息网络安全, 2024, 24(4): 587-601.

SHI Runhua, YANG Jingyi, WANG Pengbo, LIU Huawei. Online/Off line Cross-Domain Identity Authentication Scheme Based on Blockchain in Vehicle to Grid[J]. Netinfo Security, 2024, 24(4): 587-601.

图/表 14

图1

表1

图2

图3

表2

表3

表4

图4

图5

图6

表5

表6

图7

图8

参考文献 21

[1]	LIU Jianan, WENG Jian. Survey on Smart Grid Security[J]. Netinfo Security, 2016, 16(5): 78-84.
	刘家男, 翁健. 智能电网安全研究综述[J]. 信息网络安全, 2016, 16 (5): 78-84.
[2]	LIU Xiaofei, ZHANG Qianfan, CUI Shumei. Review of Electric Vehicle V2G Technology[J]. Transactions of China Electrotechnical Society, 2012, 27(2): 121-127.
	刘晓飞, 张千帆, 崔淑梅. 电动汽车V2G技术综述[J]. 电工技术学报, 2012, 27(2): 121-127.
[3]	TSENG H R. A Secure and Privacy-Preserving Communication Protocol for V2G Networks[C]// IEEE. 2012 IEEE Wireless Communications and Networking Conference(WCNC). New York: IEEE, 2012: 2706-2711.
[4]	ABDALLAH A, SHEN X S. Lightweight Authentication and Privacy-Preserving Scheme for V2G Connections[J]. IEEE Transactions on Vehicular Technology, 2017, 66(3): 2615-2629.
[5]	LUIS F A R, PAULO R L G, JAIME L. Pairing-Based Authentication Protocol for V2G Networks in Smart Grid[EB/OL]. (2018-08-20)[2023-12-20]. https://linkinghub.elsevier.com/retrieve/pii/S1570870518305997.
[6]	VAIDYA B, MAKRAKIS D, MOUFTAH H T. Security Mechanism for Multi-Domain Vehicle-to-Grid Infrastructure[C]// IEEE. 2011 IEEE Global Telecommunications Conference(GLOBECOM). New York: IEEE, 2011: 1-5.
[7]	VAIDYA B, MAKRAKIS D, MOUFTAH H T. Multi-Domain Public Key Infrastructure for Vehicle-to-Grid Network[C]// IEEE. 2015 IEEE Military Communications Conference. New York: IEEE, 2015: 1572-1577.
[8]	ZHOU Zhicheng, LI Lixin, LI Zuohui. Efficient Cross-Domain Authentication Scheme Based on Blockchain Technology[J]. Journal of Computer Applications, 2018, 38(2): 316-320. doi: 10.11772/j.issn.1001-9081.2017082170
	周致成, 李立新, 李作辉. 基于区块链技术的高效跨域认证方案[J]. 计算机应用, 2018, 38(2): 316-320. doi: 10.11772/j.issn.1001-9081.2017082170
[9]	LIU Donglan, LI Dong, LIU Xin, et al. Research on a Cross-Domain Authentication Scheme Based on Consortium Blockchain in V2G Networks of Smart Grid[C]// IEEE. 2nd IEEE Conference on Energy Internet and Energy System Integration(EI2). New York: IEEE, 2018: 1-5.
[10]	GARG S, KAUR K, KADDOUM G, et al. An Efficient Blockchain Based Hierarchical Authentication Mechanism for Energy Trading in V2G Environment[C]// IEEE. 2019 IEEE International Conference on Communications Workshops(ICC Workshops). New York: IEEE, 2019: 1-6.
[11]	AGGARWAL S, KUMAR N, GOPE P. An Efficient Blockchain-Based Authentication Scheme for Energy-Trading in V2G Networks[J]. IEEE Transactions on Industrial Informatics, 2021, 17(10): 6971-6980.
[12]	SHI Runhua, WANG Shuhao, LI Kunchang. A Lightweight Cross-Domain Mutual Authentication Scheme in V2G Networks[J]. Netinfo Security, 2022, 23(3): 20-28.
	石润华, 王树豪, 李坤昌. V2G中一种轻量级的跨域双向认证方案[J]. 信息网络安全, 2022, 23(3): 20-28.
[13]	XUE Lingyan, HUANG Haiping, XIAO Fu, et al. A Cross-Domain Authentication Scheme Based on Cooperative Blockchains Functioning with Revocation for Medical Consortiums[J]. IEEE Transactions on Network and Service Management, 2022, 19(3): 2409-2420.
[14]	ZHANG Xuewang, YAO Yaning, LI Zhihong, et al. Data Sharing Scheme Based on Consortium Blockchain and Asmuth-Bloom Secret Sharing Algorithm[J]. Netinfo Security, 2022, 22(11): 17-23.
	张学旺, 姚亚宁, 黎志鸿, 等. 基于联盟链和Asmuth-Bloom秘密共享算法的数据共享方案[J]. 信息网络安全, 2022, 22(11): 17-23.
[15]	LI Chunxiao, WANG Yaofei, XU Enliang, et al. Enabling Privacy-Preserving Range Queries in Blockchain-Based Collaborative Databases with Bilinear Pairings[J]. Netinfo Security, 2023, 23(3): 22-34.
	李春晓, 王耀飞, 徐恩亮, 等. 基于双线性映射的区块链安全范围搜索技术研究[J]. 信息网络安全, 2023, 23(3): 22-34.
[16]	HUA Jingyu, HUANG Daming. Survey of Formal Specification Methods in Theorem Proving of Ethereum Smart Contract[J]. Netinfo Security, 2022, 22(5): 11-20.
	华景煜, 黄达明. 以太坊智能合约定理证明中的形式化规约研究综述[J]. 信息网络安全, 2022, 22(5): 11-20.
[17]	ZHAO Xingwen, DUAN Yiru. NFC Secure Payment Protocol Based on Pseudonym[J]. Journal of Information Security Research, 2022, 8(12): 1178-1186.
	赵兴文, 段懿入. 基于假名的NFC安全支付认证协议[J]. 信息安全研究, 2022, 8(12): 1178-1186.
[18]	LIU Yuanni, LI Yi, CHEN Shanzhi. A Survey of Internet of Vehicles/Vehicle to Everything Security Based on Blockchain[J]. Scientia Sinica Informationis, 2023, 53(5): 841-877.
	刘媛妮, 李奕, 陈山枝. 基于区块链的车联网安全综述[J]. 中国科学(信息科学), 2023, 53(5): 841-877.
[19]	KARATI A, ISLAM S H, KARUPPIAH M. Provably Secure and Lightweight Certificateless Signature Scheme for IoT Environments[J]. IEEE Transactions on Industrial Informatics, 2018, 14(8): 3701-3711.
[20]	WU Ge, ZHANG Futai, SHEN Limin, et al. Certificateless Aggregate Signature Scheme Secure against Fully Chosen-Key Attacks[J]. Information Sciences, 2019, 514: 288-301.
[21]	SHIM K A. Forgery Attacks on Two Provably Secure Certificateless Signature Schemes[J]. Information Sciences, 2020, 521: 81-87.

相关符号	含义说明
$\text{G}{{\text{S}}^{\text{A}}}$	A区域的电网服务器
$\text{G}{{\text{S}}^{\text{B}}}$	B区域的电网服务器
$\text{KGC}$	密钥生成中心
$CS_{i}^{\text{A}}$	A区域的第i个充电桩
$CS_{i}^{\text{B}}$	B区域的第i个充电桩
$EV_{i}^{\text{A}}$	A区域的第i辆汽车
$PID_{i}^{\text{A}}$	A区域第i辆汽车的假名
$(X_{i}^{\text{A}},Y_{i}^{\text{A}},Z_{i}^{\text{A}})$	A区域第i辆汽车的公钥
$(x_{i}^{\text{A}},y_{i}^{\text{A}},z_{i}^{\text{A}})$	A区域第i辆汽车的私钥
$GI{{D}^{\text{A}}}$	A区域电网服务器的身份标识
$m_{E{{V}_{i}}}^{\text{A}}$	待签名消息
$\theta _{i,j}^{\text{B}},r_{i,j}^{\text{B}},\sigma _{i,j}^{\text{B}}$	离线签名
$w_{i,j}^{\text{B}}$	在线签名

密码学操作	时间/ms
${{T}_{bp}}$	2.8530
${{T}_{h}}$	2.8678
${{T}_{sm1}}$	0.4243
${{T}_{sm2}}$	0.0843
${{T}_{E}}$	1.3443

方案	密钥生成
文献[19]方案	$3{{T}_{sm1}}+4{{T}_{E}}$
文献[20]方案	${{T}_{h}}+2{{T}_{sm1}}$
文献[21]方案	${{T}_{h}}+2{{T}_{sm1}}$
本文方案	$3{{T}_{E}}$

方案	车辆签名	聚合签名及认证
文献[19]方案	$3{{T}_{E}}+4{{T}_{sm1}}$	—
文献[20]方案	$6{{T}_{sm1}}$	$(3n+3){{T}_{bp}}+3n{{T}_{h}}+6n{{T}_{sm1}}+(n+1){{T}_{sm2}}$
文献[21]方案	$2{{T}_{h}}+4{{T}_{sm1}}$	$(2n+2){{T}_{bp}}+(2n+1){{T}_{h}}+n{{T}_{sm1}}+(2n+2){{T}_{sm2}}$
本文方案	$2{{T}_{sm1}}$	$n{{T}_{bp}}+3n{{T}_{sm1}}+(3n+1){{T}_{E}}$

基本计算或变量	通信开销/bit
${{l}_{G}}$	512
${{l}_{Z}}$	160
${{l}_{Num}}$	128
${{l}_{t}}$	32
${{l}_{h}}$	256