面向多类型节点的混合多级μTESLA协议  

作　　者：漆骏锋 潘文伦 冷忞杰 QI Junfeng;PAN Wenun;LENG Minjie(School of Computer Science and Engineering,University of Electronic Science and Technology of China,Chengdu 611731,China;Cryptographic Technology Integration and Innovation Center,Beijing Haitai Fangyuan Technologies Co.,Ltd.,Beijing 100085,China;School of Information Resource Management,Renmin University of China,Beijing 100872,China)

机构地区：[1]电子科技大学计算机科学与工程学院,成都611731 [2]北京海泰方圆科技股份有限公司密码技术融合创新中心,北京100085 [3]中国人民大学信息资源管理学院,北京100872

出　　处：《电子科技大学学报》2025年第2期233-241,共9页Journal of University of Electronic Science and Technology of China

基　　金：国家重点研发计划(2021QY2334)。

摘　　要：随着5 G技术的广泛应用和6 G网络技术的前瞻性研究,物联网设备已广泛应用于各种实际场景中,无线通信网络也日益复杂。在这样复杂的无线通信环境中,确保数据安全和通信效率尤为关键。广播鉴别协议作为主要解决方案之一,已应用于多种场景,但在面对多类型、大规模节点的安全广播需求时,现有协议仍存在局限性。针对这一问题,提出了一种创新性的广播鉴别协议:混合多级μTESLA协议。该协议融合并优化了现有TESLA协议及其变体的优点,特别针对多类型节点环境进行了创新性改进。协议采用了双层密钥链设计,其中高级密钥链具有较长的时间间隔,用于生成和管理低级密钥链;低级密钥链则直接应用于消息鉴别。这种设计不仅提升了鉴别效率,还显著减轻了广播节点在密钥使用和存储方面的负担。此外,低级密钥链被分为多组,每组专门用于向特定类型的节点群广播消息,实现了针对不同类型节点群的分类广播与资源的动态优化。With the widespread applications of 5G technology and the forward-looking researches on 6G network technology,IoT devices have been extensively used in various practical scenarios,leading to anincreasingly complex wireless communication network.In such a complex wireless communication environment,ensuring data security and communication efficiency has become particularly crucial.Broadcast authenticationprotocols,as one of the main solutions,have been applied in multiple scenarios.However,when facing securebroadcasts to multi-type and large-scale nodes,existing protocols still have limitations.To address this issue,aninnovative broadcast authentication protocol is proposed,named the hybrid multi-level TESLA protocol.Thisprotocol integrates and optimizes the advantages of the existing TESLA protocol and its variants,with innovativeimprovements specifically for environments with multiple types of nodes.The protocol employs a dual-layer keychain design,where the high-level key chain has longer time intervals for generating and managing the low-levelkey chains;the low-level key chains are directly used for message authentication.This design not only enhancesauthentication efficiency but also significantly reduces the burden on broadcast nodes in terms of key usage andstorage.Moreover,the low-level key chains are divided into multiple groups,each dedicated to broadcastingmessages to a specific type of node group,achieving classified broadcasting and dynamic optimization of resourcesfor different types of node groups.

关 键 词：连续鉴别 分类广播 低开销 可扩展性 TESLA协议 

分 类 号：TP393.08[自动化与计算机技术—计算机应用技术]