ISSN 1000-1239 CN 11-1777/TP

计算机研究与发展 ›› 2016, Vol. 53 ›› Issue (10): 2323-2333.doi: 10.7544/issn1000-1239.2016.20160428

所属专题: 2016网络空间共享安全研究进展专题

• 信息安全 • 上一篇    下一篇

面向车联网的多服务器架构的匿名双向认证与密钥协商协议

谢永1,2,吴黎兵1,3,张宇波3,叶璐瑶3   

  1. 1(软件工程国家重点实验室(武汉大学) 武汉 430072); 2(景德镇陶瓷大学信息工程学院 江西景德镇 333403); 3(武汉大学计算机学院 武汉 430072) (mark.y.xie@qq.com)
  • 出版日期: 2016-10-01
  • 基金资助: 
    国家自然科学基金项目(61272112,61472287);湖北省自然科学基金重点项目(2015CF068) This work was supported by the National Natural Science Foundation of China (61272112, 61472287) and the Key Program of the Natural Science Foundation of Hubei Province of China (2015CFA068).

Anonymous Mutual Authentication and Key Agreement Protocol in Multi-Server Architecture for VANETs

Xie Yong1,2, Wu Libing1,3, Zhang Yubo1, Ye Luyao1   

  1. 1(State Key Laboratory of Software Engineering (Wuhan University), Wuhan 430072); 2(School of Information and Engineering, Jingdezhen Ceramic Institute, Jingdezhen, Jiangxi 333403); 3(Computer School, Wuhan University, Wuhan 430072)
  • Online: 2016-10-01

摘要: 车联网(vehicular ad hoc networks, VANETs)是一种依据特定通信协议,实现车-X(X:车、路、行人及互联网等)之间的无线通讯和信息交换的大型网络.随着云计算的发展,越来越丰富的车联网云服务将涌现并服务于车辆.但这些服务往往由不同的服务器提供,车辆(用户)则不得不在各个服务器上注册并记住大量的用户名与密码.为了实现用户一次注册即可与多个服务器相互认证的目标,多服务器架构的认证协议已被提出并应用于众多领域,但尚未有面向车联网的相关研究.车间通信的瞬时性对认证协议提出了更高的要求,然而已有的多服务器架构的认证协议使用了复杂的双线性密码,在通信与认证开销方面无法满足车联网的要求.为此,首次提出了一个面向车联网的多服务器架构下的新型匿名双向认证与密钥协商协议,该协议采用非奇异椭圆曲线构造了简易的认证方法,降低了认证的计算复杂性.随机匿名机制能有效地保护车辆的隐私,且可与服务器进行双向认证与密钥协商.在随机预言机模型下证明了协议的安全性.性能分析表明:与最近的匿名双向认证协议相比,该协议在认证与密钥协商阶段的计算开销与通信开销分别减少了61%与62%,可更好地满足车联网对计算与通信开销的要求.

关键词: 车联网, 双向认证, 密钥协商, 椭圆曲线密码, 效率, 隐私保护, 云服务

Abstract: Vehicular ad hoc networks (VANETs) is a large network that runs according to a special communication protocol to achieve wireless communication and information exchange among vehicles and roadside infrastructures, pedestrian, Internet and so on. With the development of cloud computing, more and more cloud services for VANETs will emerge. However, the services are usually provided by different servers. Thus, vehicle users have to register different servers and remember a lot of usernames and passwords. Aimed to the goal that a user can do mutual authentication with all servers after hisher one-time registration, the multi-server architecture authentication protocols have been proposed and applied in many areas, but no one focuses on VANETs. The instantaneity of communication in VAENTs poses a new challenge on the multi-server architecture authentication protocol. The existing multi-server architecture authentication protocols use the complex bilinear pairing operations, which cannot meet the strict requirements of VANETs on authentication and communication costs. In this paper, a new efficient anonymous mutual authentication and key agreement protocol for the multi-server environment of VANETs is proposed. The proposed protocol decreases the complexity of protocol by using elliptic curve cryptosystem (ECC) to construct a simple authentication way, and provides the function of random anonymity to protect the privacy of vehicle. The security of the proposed protocol is proved in the random oracle model. Performance analysis shows that compared with the most recent mutual authentication protocols, our protocol decreases the computation and communication cost at least 61% and 62% in the mutual authentication and key agreement phase, and can better meet the computation and communication cost requirements of VANETs.

Key words: vehicular ad hoc networks (VANETs), mutual authentication (MA), key agreement, elliptic curve cryptosystem (ECC), efficiency, privacy preserving, cloud service

中图分类号: