基于属性签名的车载网匿名信任管理方案  被引量：2

作　　者：肖敏 毛发英 黄永洪 曹云飞[2,3] XIAO Min;MAO Faying;HUANG Yonghong;CAO Yunfei(School of Cyberspace Security and Information Law,Chongqing University of Posts and Telecommunications,Chongqing 400065,China;No.30 Research Institute of China Electronics Technology Group Corporation,Chengdu 610041,China;China Electronics Technology Cyber Security Co.,Ltd,Chengdu 610041,China)

机构地区：[1]重庆邮电大学网络空间安全与信息法学院,重庆400065 [2]中国电子科技集团公司第三十研究所,四川成都610041 [3]中国电子科技网络信息安全有限公司,四川成都610041

出　　处：《网络与信息安全学报》2023年第2期33-45,共13页Chinese Journal of Network and Information Security

基　　金：四川省重点研发计划(2020YFG0292)。

摘　　要：信任管理机制可以用来解决车载网(VANET)中消息的真实性评估和通信实体之间的信任问题。现有的信任管理方案中缺乏有效的隐私保护机制,即在绑定车辆身份与其信誉值的关联时会暴露车辆的隐私。利用基于属性的签名具有的匿名性,提出一种VANET匿名信任管理方案。由可信权威维护车辆的信誉等级,将车辆的信誉等级和当前时间作为车辆的属性身份集合,实现匿名的车辆身份与其信誉等级绑定,能够提供车辆的隐私保护;属性签名私钥的及时更新能够抵抗虚假信誉攻击;属性签名验证的同时实现匿名验证车辆的信誉等级;利用假名隐藏车辆的真实身份,实现只有可信权威能够从假名解析车辆的真实身份以更新其信誉等级,并提供恶意车辆身份合法和安全的追踪。在通用群模型下,证明基于属性的签名方案满足不可伪造性的安全性。安全分析进一步表明,所提方案能够保护车辆的身份和位置隐私,实现只有可信权威可以合法追踪恶意车辆,还能够提供抵抗虚假信誉攻击,保证通信的完整性和抵抗重放攻击。性能分析验证了所提方案与已有方案相比,具有一定的计算和通信效率优势。Trust management mechanisms can solve the authenticity assessment problem of messages and establish trust between communication entities in the VANET.However,current trust management schemes lack an effective privacy protection mechanism,leading to privacy concerns for vehicles when binding their identity with their trust level.Based on the anonymity of attribute-based signature,an anonymous trust management scheme was proposed for VANET.The trust level of the vehicle was maintained by the trusted authority.The trust level of vehicles and the current time were taken as the attribute identity set of the vehicle,so as to realize the binding of the anonymous vehicle identity with its trust level,which could provide the privacy protection of vehicles.In addition,the timely update of attribute signature private key could resist false reputation attack and the trust level of the vehicle could be verified anonymously while the attribute signature was verified.Furthermore,the pseudonym was used to hide the real identity of the vehicle,enabling only the trusted authority could parse the real identity of vehicles from the pseudonym to update their trust level,and providing legal and secure tracking of the malicious vehicle identity vehicle.Under the general group model,the attribute-based signature scheme is proven to satisfy the security of unforgerability.The security analysis further shows that the scheme protects the identity and location privacy of vehicles,enables only the trusted authority to legally track malicious vehicles,resists false reputation attacks,ensures communication integrity,and resists replay attacks.Performance analysis confirms that the proposed scheme has better computation and communication efficiency than existing schemes.

关 键 词：车载网 信任管理 条件隐私保护 基于属性的签名 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]