5G车联网中安全高效的组播服务认证与密钥协商方案  被引量：2

作　　者：张应辉[1] 李国腾 韩刚 曹进 郑东[1] ZHANG Yinghui;LI Guoteng;HAN Gang;CAO Jin;ZHENG Dong(School of Cyberspace Security,Xi’an University of Posts and Telecommunications,Xi’an 710121,China;School of Cyber Engineering,Xidian University,Xi’an 710071,China)

机构地区：[1]西安邮电大学网络空间安全学院,西安710121 [2]西安电子科技大学网络与信息安全学院,西安710071

出　　处：《电子与信息学报》2024年第7期3026-3035,共10页Journal of Electronics & Information Technology

基　　金：国家自然科学基金(62072369,62072371);陕西高校青年创新团队基金(本基金无项目编号);陕西省特支计划青年拔尖人才支持计划基金(本基金无项目编号);陕西省重点研发计划(2021ZDLGY06-02,2020ZDLGY08-04);陕西省技术创新引导计划(2023-YD-CGZH-31)。

摘　　要：5G车联网(5G-V2X)中,内容提供者通过以点对多的传输方式向属于特定区域的一组车辆提供服务消息。针对于车辆获取组播服务遭受的安全威胁与隐私泄露问题,该文提出一种认证和密钥协商方案用于内容提供者与车辆之间的组播服务消息传输。首先,采用无证书聚合签名技术批量验证群组内所有车辆,提高了认证请求的效率。其次,基于多项式密钥管理技术实现安全的密钥协商,使得非法用户或核心网络无法获取共享会话密钥。最后,实现了群组内车辆的动态密钥更新机制,当车辆加入或离开群组时,内容提供者只需要发送1条密钥更新消息即可更新会话密钥。基于形式化验证工具和进一步安全性分析表明,所提方案可以保证匿名性、不可链接性、前向和后向安全性以及抗共谋攻击等安全需求。与现有方案相比,计算效率提高了约34.2%。In 5G Vehicular to Everything(5G-V2X),service messages are provided to a group of vehicles belonging to a specific region by means of point-to-multipoint transmission.To address security threats and privacy leakage,an authentication and key negotiation scheme is proposed for multicast service message transmission between content providers and vehicles.A certificate-less aggregated signature technique is used to batch-verify all vehicles in the group,and improves the efficiency of authentication requests.Secure key negotiation is realized based on the polynomial key management technique,which makes it impossible for illegal users or the core network to obtain the shared session key.Finally,a dynamic key update mechanism for vehicles in the group is implemented,so that when a vehicle joins or leaves the group,the content provider only needs to send a key update message to update the session key.The proposed scheme can guarantee security requirements such as anonymity,unlinkability,forward and backward security,and resistance to conspiracy attacks,as shown by formal verification tools and further security analysis.The computational efficiency is improved by about 34.2%compared to existing schemes.

关 键 词：5G车联网 认证 密钥协商 动态群组 组播 

分 类 号：TN918[电子电信—通信与信息系统]