面向车联网的匿名组密钥分发方案  被引量：1

作　　者：何智旺 王化群 HE Zhiwang;WANG Huaqun(School of Computer Science,Nanjing University of Posts and Telecommunications,Nanjing 210023,China)

机构地区：[1]南京邮电大学计算机学院,江苏南京210023

出　　处：《网络与信息安全学报》2023年第5期127-137,共11页Chinese Journal of Network and Information Security

基　　金：国家自然科学基金(62272238)。

摘　　要：车载自组织网络(VANET,vehicular ad hoc network)作为智能交通系统的重要组成部分,可在车辆行驶时提供驾驶信息等服务,如防止碰撞、提高交通效率等。在可信第三方(TTP,trusted third party)和车辆进行交互时,难免会受到窃听、篡改和伪造等安全威胁。现有的方案多是在TTP和车辆间进行密钥协商来创建会话密钥以保证会话的安全。但系统过度依赖TTP可能会受到单点故障的影响,以及面临TTP向多个车辆发送相同信息时产生的信息冗余问题。同时,创建组会话密钥所使用的密钥协商方式相较于分发方式会产生更多的交互数据和交互次数。提出面向车联网的匿名组密钥分发方案,方案借助路侧单元(RSU,road side unit)来组织多个车辆创建组会话密钥,使用基于身份的公钥密码和改进的多接收者加密方案实现RSU和车辆间的双向认证与组会话密钥的分发。在密钥分发的过程中,只需要一次加密操作便可让所有组内成员获得一致的会话密钥。凭此可减少系统实体在认证和组通信时对TTP的过度依赖。通过形式化的安全性证明表明,所提方案满足基本的安全要求。同时,经过性能分析和对比,所提方案的计算开销和通信开销比同类方案更有优势。Vehicular ad hoc networks(VANET)play a crucial role in intelligent transportation systems by providing driving information and services such as collision prevention and improved traffic efficiency.However,when a trusted third party(TTP)interacts with a vehicle in VANET,it can be vulnerable to security threats like eavesdrop-ping,tampering,and forgery.Many existing schemes rely heavily on TTP for key negotiation to establish session keys and ensure session security.However,this over-reliance on TTP can introduce a single point of failure and re-dundancy issues when TTP sends the same information to multiple vehicles.Additionally,key negotiation methods used for creating group session keys often result in increased interaction data and interaction times.An anonymous group key distribution scheme for the internet of vehicles was proposed to address these challenges.The Road Side Units(RSUs)were used to facilitate the creation of group session keys among multiple vehicles.Identity-based pub-lic key cryptography and an improved multi-receiver encryption scheme were utilized for communication between RSUs and vehicles,enabling two-way authentication and secure distribution of group session keys.During the key distribution process,a single encryption operation was sufficient to allow all group members to obtain a consistent session key.This reduced the reliance on TTP for authentication and group communication.Formal security proofs demonstrate that the proposed scheme satisfies basic security requirements.Furthermore,performance analysis and comparisons indicate that this scheme offers lower computational overhead and communication overhead compared to similar schemes.

关 键 词：车联网 认证 组会话密钥 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]