车载自组织网络中格基签密的可认证隐私保护方案  

作　　者：崔剑阳 蔡英[1] 张宇 范艳芳[1] CUI Jianyang;CAI Ying;ZHANG Yu;FAN Yanfang(Computer School,Beijing Information Science and Technology University,Beijing 100101,China)

机构地区：[1]北京信息科技大学计算机学院,北京100101

出　　处：《计算机应用》2024年第1期233-241,共9页journal of Computer Applications

基　　金：国家自然科学基金资助项目(61672106);北京市自然科学基金−海淀原始创新联合基金资助项目(L192023)。

摘　　要：针对车载自组织网络(VANET)中用户的隐私泄露和信息传输过程中的安全认证问题,提出一种VANET中格基签密的可认证隐私保护方案。首先,消息发送方利用接收方的公钥对消息进行签密,只有拥有私钥的接收车辆才能解密出消息,以保证消息内容在传输过程中只对授权用户可见;其次,车辆接收方解密出消息后,利用单向安全的哈希函数计算消息的哈希值,并判断是否与签密过程中的哈希值相等,实现对消息的认证;最后,采用快速数论变换(NTT)算法降低格中环上多项式乘法的计算开销,提高方案的计算效率。在随机预言机模型下证明了所提方案在适应性选择密文攻击下具有不可区分性,在适应性选择消息攻击(IND-CCA2)下具有强不可伪造性。此外,所提方案的安全性基于格上困难问题,可以抵抗量子算法攻击。仿真实验结果表明,与同类具有消息认证功能的隐私保护方案以及基于格上困难问题的签名方案相比,所提方案的通信时延至少减少了10.01%,消息丢失率至少减小了31.79%,通信开销至少减少了31.25%。因此,所提方案更适用于资源有限的VANET环境。To address the issues of user privacy leakage and message authentication in Vehicular Ad hoc NETwork(VANET),an authenticatable privacy-preserving scheme based on signcryption from lattice was proposed.Firstly,the public key of receiver was used to signcrypt the message to generate the ciphertext,and only the receiver with corresponding private key could decrypt the ciphertext,which ensures messages visible only to authorized users.Secondly,after decrypting the message,the receiver calculated the hash value of the message by one-way secure hash function,and judged whether the hash value of the message changed,which realized message authentication.Finally,Number Theoretic Transform(NTT)algorithm was used to reduce the computational overhead of polynomial multiplication and improve the computational efficiency of the scheme.The proposed scheme was proved to have INDistinguishability under Chosen Ciphertext Attack(IND-CCA2)and Strong UnForgeability under Chosen Message Attack(SUF-CMA)under the random oracle model.In addition,the security of the proposed scheme is based on lattice hardness problems,so that it can resist quantum algorithm attack.Simulation experiment results show that the proposed scheme improves the performance in terms of communication delay(at least reducing 10.01%),message loss rate(at least reducing 31.79%)and communication overhead(at least reducing 31.25%)compared to similar authenticated privacy-preserving schemes and a lattice-based signature scheme.Therefore,the proposed scheme is more suitable for resource-constrained VANETs.

关 键 词：车载自组织网络 认证 隐私保护 格 签密 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]