基于PUF的5G车联网V2V匿名认证与密钥协商协议  被引量：12

作　　者：侯琬钰 孙钰 李大伟 崔剑 关振宇 刘建伟 Hou Wanyu;Sun Yu;Li Dawei;Cui Jian;Guan Zhenyu;Liu Jianwei(School of Cyber Science and Technology,Beihang University,Beijing 100191;Key Laboratory of Ministry of Industry and Information Technology for Cyberspace Security(Beihang University),Beijing 100191)

机构地区：[1]北京航空航天大学网络空间安全学院,北京100191 [2]空天网络安全工业和信息化部重点实验室(北京航空航天大学),北京100191

出　　处：《计算机研究与发展》2021年第10期2265-2277,共13页Journal of Computer Research and Development

基　　金：国家自然科学基金项目(32071775,62002006)。

摘　　要：针对目前5G车联网中车辆之间(vehicle-to-vehicle,V2V)通信的认证与密钥协商方案算法复杂、时延高的问题,提出一种基于物理不可克隆函数(physical unclonable function,PUF)的5G车联网V2V匿名认证与密钥协商协议.协议通过引入轻量级PUF避免了V2V认证中的数字签名操作,并精简通信步骤,成功减轻车辆的计算和通信开销.协议还借助PUF实现了车辆的车载单元(on board unit,OBU)和5G SIM卡的绑定,解决了身份假冒问题.同时,通过构建身份索引表,实现监管部门通过5G服务网(serving work,SN)对车辆的伪身份溯源,满足条件匿名性要求.使用形式化工具AVISPA验证了协议在Dolve-Yao模型下的安全性,并在计算开销、通信开销、安全性方面优于已有的车联网匿名通信协议,可为5G车联网的V2V通信提供基本安全保障.In order to solve complex algorithm and high time delay for vehicle-to-vehicle(V2V)communication in 5G vehicle-to-everything(V2X),an anonymous V2V authentication and key agreement protocol based on physical unclonable function(PUF)is proposed.By using lightweight PUF,vehicles can avoid digital signature,key storage and certificate escrow to reduce the overhead of calculation and storage.At the same time,our protocol only needs one-way communication between two vehicles and 5G service network(SN)and one handshake communication between two vehicles to complete V2V authentication and key agreement scheme,which can greatly reduce the communication overhead and time delay.What's more,PUF binds the on board unit(OBU)of vehicle to the 5G SIM card,which can resist identity forgery attacks.Through the construction of identity index table,the regulatory authority can track the source of vehicles'pseudo identities through 5G SN,which satisfies conditional anonymity.The security of the proposed protocol is proved in the Dolve-Yao model by AVISPA which is a formal analysis tool.Also,it is superior to the existing 5G V2X anonymous communication protocols in terms of computation overhead,communication overhead and security.Our protocol can provide essential security for V2V communication in 5G V2X.

关 键 词：5G V2X 伪身份 物理不克隆函数 双向认证 密钥协商 隐私保护 

分 类 号：TP393.08[自动化与计算机技术—计算机应用技术] TN918[自动化与计算机技术—计算机科学与技术]