车联网中支持非法签名定位的无证书匿名认证方案  被引量：1

作　　者：杨小东 李沐紫 马国祖 李松谕 王彩芬 YANG Xiaodong;LI Muzi;MA Guozu;LI Songyu;WANG Caifen(College of Computer Science and Engineering,Northwest Normal University,Lanzhou 730070,Gansu,China;China Telecom WanWei Information Technology Co.,Ltd,Lanzhou 730070,Gansu,China;Gansu Research Center for Information Technology and Information Security,Lanzhou 730070,Gansu,China;College of Big Data and Internet,Shenzhen Technology University,Shenzhen 518118,Guangdong,China)

机构地区：[1]西北师范大学计算机科学与工程学院,甘肃兰州730070 [2]中电万维信息技术有限责任公司,甘肃兰州730070 [3]甘肃省信息技术与信息安全研究中心,甘肃兰州730070 [4]深圳技术大学大数据与互联网学院,广东深圳518118

出　　处：《计算机工程》2024年第6期157-165,共9页Computer Engineering

基　　金：国家自然科学基金(62362059,62172337);甘肃省重点研发计划(23YFGA0081);甘肃省教育厅产业支撑计划项目(2023CYZC-09)。

摘　　要：车联网环境中,车辆通过互联网连接到公共网络,车辆信息在传输过程中很容易遭受到攻击者的各种恶意攻击,从而导致车辆隐私信息泄露甚至威胁用户生命安全。2022年,为了保障车辆间公开通信中消息传输的安全性和隐私性,研究人员提出了一种车联网环境下的无证书匿名认证方案,并证明该方案在随机预言机模型下满足签名的不可伪造性。然而,通过安全性分析发现,该方案无法抵抗恶意的密钥生成中心替换攻击以及车辆之间的合谋攻击。针对上述安全缺陷,提出改进的车联网无证书匿名认证方案。在随机预言模型下基于椭圆曲线离散对数问题存在不可伪造性,同时也能够抵抗车辆之间联合发起的合谋攻击。此外,该方案支持非法签名的快速查询,能在聚合签名验证失败后,通过建立非法签名与聚合签名验证等式的关联性,节省对右子节点中非法签名的查找次数,从而迅速定位到非法签名的位置。实验结果表明,与同类方案相比,改进方案在聚合签名验证阶段的计算开销减少了至少25%,并能满足更多的安全属性。In the Internet of Vehicles(IoV)environment,vehicles are connected to public networks through the Internet and information is vulnerable to various malicious attacks from attackers during transmission.Consequently,vehicle privacy information is leaked,which can threaten the safety of users.In 2022,to guarantee the security and privacy of message transmission in public communication between vehicles,researchers propose a certificateless anonymous authentication scheme for the IoV and proved that the scheme satisfies signature unforgeability under a random oracle model.However,security analysis revealed that their scheme is unable to resist malicious Key Generation Center(KGC)replacement attacks and collusion attacks between vehicles.Hence,an enhanced certificateless anonymous authentication scheme for the IoV is proposed.The proposed scheme features unforgeability based on the Elliptic-Curve Discrete-Logarithm Problem(ECDLP)under a random oracle model and resists coalition attacks jointly launched among vehicles.Additionally,the proposed scheme supports rapid illegal signature queries and can reduce the number of searches for illegal signatures in the correct child node by establishing a correlation between illegal signatures and the aggregate signature-verification equation after the aggregate signature verification fails,thus promptly locating illegal signatures.The proposed scheme reduces the computational cost in the aggregate signature-verification stage by at least 25%and achieves better security properties than similar solutions.

关 键 词：车联网 匿名认证 无证书签名 签名伪造 非法签名定位 

分 类 号：TP309.7[自动化与计算机技术—计算机系统结构]