车联网中基于环的匿名高效批量认证与组密钥协商协议  被引量：3

作　　者：张海波[1,2] 兰凯 陈舟 王汝言 邹灿[3] 王明月 ZHANG Haibo;LAN Kai;CHEN Zhou;WANG Ruyan;ZOU Can;WANG Mingyue(School of Communication and Information Engineering,Chongqing University of Posts and Telecommunications,Chongqing 400065,China;Advanced Network and Intelligent Connection Technology Key Laboratory of Chongqing Education Commission of China,Chongqing 400065,China;360 Digital Security Technology Group Co.,Ltd.,Beijing 100015,China;Aalborg University,Aalborg 9220,Denmark)

机构地区：[1]重庆邮电大学通信与信息工程学院,重庆400065 [2]先进网络与智能互联技术重庆市高校重点实验室,重庆400065 [3]三六零数字安全科技集团有限公司,北京100015 [4]丹麦奥尔堡大学,奥尔堡9220

出　　处：《通信学报》2023年第6期103-116,共14页Journal on Communications

基　　金：国家自然科学基金资助项目(No.61901071,No.61801065);长江学者和创新团队发展计划基金资助项目(No.IRT16R72);重庆市留创计划创新类基金资助项目(No.cx2020059)。

摘　　要：针对当前批量认证与密钥协商协议依赖于半可信路边单元(RSU)且不适用于大规模车联网(IoV)场景下密钥更新的问题,提出了IoV中基于环的匿名高效批量认证与组密钥协商协议。通过假名机制确保匿名性,利用混沌映射安全构建认证密钥对,并通过少量双线性映射快速完成对大批车辆的批量认证。充分考虑大规模IoV场景下车辆加入与离开情况,利用混沌映射半群性高效构建环状会话组,设计了适用于大规模车辆的组密钥建立与更新机制。此外,该协议设定了假名更新与匿名追溯机制确保更安全的会话过程,同时利用BAN逻辑模型证明了协议语义安全性。安全性分析与仿真结果表明,所提协议具备多重安全属性且拥有一定的效率优势。Aiming at the problem that the current batch authentication and key agreement protocol were relied on semi-trusted road side unit(RSU)and were not suitable for key update in large-scale Internet of vehicles(IoV),a ring-based efficient batch authentication and group key agreement protocol with anonymity in IoV was proposed.The anonymity was ensured by the pseudonym mechanism.The authentication key pairs were constructed by the chaotic map,and the batch authentication for many vehicles was quickly completed by a small number of bilinear maps.The joining and leaving of vehicles in large-scale IoV scenario were fully considered,a ring session group was efficiently constructed by using the semi-group property of chaotic maps,and a group key establishment and update mechanism suitable for large-scale vehicles was designed.In addition,a pseudonym update mechanism and an anonymous tracing mechanism were designed to ensure a more secure session process.At the same time,the BAN logic model was used to prove the semantic security of the protocol.The security analysis and simulation results show that the proposed protocol has multiple security attributes and certain efficiency advantages.

关 键 词：车联网 批量认证 组密钥协商 混沌映射 密钥更新机制 

分 类 号：TN915.08[电子电信—通信与信息系统]