高级搜索

留言板

尊敬的读者、作者、审稿人, 关于本刊的投稿、审稿、编辑和出版的任何问题, 您可以本页添加留言。我们将尽快给您答复。谢谢您的支持!

姓名
邮箱
手机号码
标题
留言内容
验证码

基于物理不可克隆函数的轻量级可证明安全车联网认证协议

夏卓群 苏潮 徐梓桑 龙科军

夏卓群, 苏潮, 徐梓桑, 龙科军. 基于物理不可克隆函数的轻量级可证明安全车联网认证协议[J]. 电子与信息学报, 2024, 46(9): 3788-3796. doi: 10.11999/JEIT240141
引用本文: 夏卓群, 苏潮, 徐梓桑, 龙科军. 基于物理不可克隆函数的轻量级可证明安全车联网认证协议[J]. 电子与信息学报, 2024, 46(9): 3788-3796. doi: 10.11999/JEIT240141
XIA Zhuoqun, SU Chao, XU Zisang, LONG Kejun. A Lightweight and Provably Secure Authentication Protocol for Internet of Vehicles Using Physical Unclonable Function[J]. Journal of Electronics & Information Technology, 2024, 46(9): 3788-3796. doi: 10.11999/JEIT240141
Citation: XIA Zhuoqun, SU Chao, XU Zisang, LONG Kejun. A Lightweight and Provably Secure Authentication Protocol for Internet of Vehicles Using Physical Unclonable Function[J]. Journal of Electronics & Information Technology, 2024, 46(9): 3788-3796. doi: 10.11999/JEIT240141

基于物理不可克隆函数的轻量级可证明安全车联网认证协议

doi: 10.11999/JEIT240141
基金项目: 国家自然科学基金(52172313),湖南省自然科学基金(2023JJ30033),新疆维吾尔自治区重点研发计划(2023B03004-3),湖南省自然科学基金(2024JJ6066),湖南省教育厅科学研究项目(23B0288)
详细信息
    作者简介:

    夏卓群:男,教授,研究方向为社交网络、移动网络、VANET以及网络和信息安全

    苏潮:男,硕士生,研究方向为隐私保护和网络安全

    徐梓桑:男,讲师,研究方向为嵌入式系统、信息安全和密码

    龙科军:男,教授,研究方向为交通控制、交通信息技术和智能交通系统

    通讯作者:

    徐梓桑 xzsszx111@csust.edu.cn

  • 中图分类号: TN915.08; TN918.4

A Lightweight and Provably Secure Authentication Protocol for Internet of Vehicles Using Physical Unclonable Function

Funds: The National Natural Science Foundation of China(52172313), Hunan Natural Science Foundation (2023JJ30033), Xinjiang Uygur Autonomous Region Key Research and Development Program (2023B03004-3), The Natural Science Foundation of Hunan Province of China (2024JJ6066), The Research Foundation of Education Bureau of Hunan Province of China (23B0288)
  • 摘要: 车联网(IoVs)广泛用于获取车辆和道路状况等信息,但是这些信息都是在公共信道中进行传输,所以最重要和关键的要求之一就是在严格延迟要求下的数据安全。其中,认证是解决数据安全最常用的方法,但是由于车联网的资源受限和对延迟敏感等特点,车辆认证需要在一定的消耗和延迟内完成。然而,现有方案容易遭受物理、伪造和共谋等攻击,同时也产生了昂贵的通信和计算成本。该文提出一种基于物理不可克隆函数(PUF)的车路云协同轻量级安全认证方案。所提议方案采用轻量级的物理不可克隆函数作为车联网实体的信任保证,抵御攻击者对实体的物理和共谋等攻击;采用车路云协同的架构,在经过可信机构(TA)认证的路边单元(RSU)上完成认证运算,大大减轻了TA的计算压力,并将挑战响应对(CRPs)的更新应用到假名的构造更新中,保护身份和轨迹隐私的同时也能在身份追踪阶段披露恶意车辆身份。在实际场景的模拟实验中,通过与其它方案进行比较,表明该方案更加安全和高效。
  • 图  1  车路云协同的车联网认证模型

    图  2  RSU注册

    图  3  车辆注册

    图  4  车辆验证

    图  5  仿真实验实际场景地图

    图  6  平均延迟

    图  9  开销比

    图  7  平均跳数

    图  8  传输成功率

    表  1  参数含义对照表

    符号 描述
    TA 可信中心
    Vi i个车辆
    ID 实体身份
    X, x 实体的公钥和私钥
    CRP PUF的挑战响应对
    T 时间戳
    SK 会话密钥
    下载: 导出CSV

    表  2  实体的计算开销(ms)

    文献 V RSU TA 合计
    [7] 120.21 121.06 / 241.27
    [6] 20.76 41.52 141.41 203.70
    [20] 40.00 100.01 120.01 260.02
    [11] 80.20 100.02 20.00 200.22
    本文 40.20 60.20 60.60 161.00
    下载: 导出CSV

    表  3  实体的通信开销(bit)

    文献 V RSU TA 合计
    [7] 864 576 / 1440
    [6] 288 1408 1152 2848
    [20] 960 2048 768 3776
    [11] 1760 768 1380 3908
    本文 768 704 384 1856
    下载: 导出CSV

    表  4  安全属性

    安全属性 文献[7] 文献[6] 文献[20] 文献[11] 本文
    A1
    A2
    A3
    A4
    A5
    A6
    A7
    A8
    A9
    A10
    A1:重放攻击;A2:TA伪造攻击;A3:物理克隆攻击;A4:车辆伪造攻击;A5:中间人攻击;A6:共谋攻击;A7:匿名性;A8:不可链接性;A9:前后向保密;A10:身份追踪
    下载: 导出CSV
  • [1] XIE Qi and HUANG Juanjuan. Improvement of a conditional privacy-preserving and desynchronization-resistant authentication protocol for IoV[J]. Applied Sciences, 2024, 14(6): 2451. doi: 10.3390/app14062451.
    [2] JAVAID U, AMAN M N, and SIKDAR B. A scalable protocol for driving trust management in internet of vehicles with blockchain[J]. IEEE Internet of Things Journal, 2020, 7(12): 11815–11829. doi: 10.1109/JIOT.2020.3002711.
    [3] ELHALAWANY B M, EL-BANNA A A A, and WU Kaishun. Physical-layer security and privacy for vehicle-to-everything[J]. IEEE Communications Magazine, 2019, 57(10): 84–90. doi: 10.1109/MCOM.001.1900141.
    [4] KUMAR V, AHMAD M, MISHRA D, et al. RSEAP: RFID based secure and efficient authentication protocol for vehicular cloud computing[J]. Vehicular Communications, 2020, 22: 100213. doi: 10.1016/j.vehcom.2019.100213.
    [5] XIONG Jinbo, MA Rong, CHEN Lei, et al. A personalized privacy protection framework for mobile crowdsensing in IIoT[J]. IEEE Transactions on Industrial Informatics, 2020, 16(6): 4231–4241. doi: 10.1109/tii.2019.2948068.
    [6] AMAN M N, JAVAID U, and SIKDAR B. A privacy-preserving and scalable authentication protocol for the internet of vehicles[J]. IEEE Internet of Things Journal, 2021, 8(2): 1123–1139. doi: 10.1109/jiot.2020.3010893.
    [7] XIE Qi, DING Zixuan, and ZHENG Panpan. Provably secure and anonymous V2I and V2V authentication protocol for VANETs[J]. IEEE Transactions on Intelligent Transportation Systems, 2023, 24(7): 7318–7327. doi: 10.1109/TITS.2023.3253710.
    [8] UMAR M, ISLAM S K H, MAHMOOD K, et al. Provable secure identity-based anonymous and privacy-preserving inter-vehicular authentication protocol for VANETS using PUF[J]. IEEE Transactions on Vehicular Technology, 2021, 70(11): 12158–12167. doi: 10.1109/TVT.2021.3118892.
    [9] WU Anmulin, GUO Yajun, and GUO Yimin. A decentralized lightweight blockchain-based authentication mechanism for Internet of Vehicles[J]. Peer-to-Peer Networking and Applications, 2023, 16(3): 1340–1353. doi: 10.1007/s12083-022-01442-0.
    [10] LI Jie, LIN Yuanyuan, LI Yibing, et al. BPA: A novel blockchain-based privacy-preserving authentication scheme for the internet of vehicles[J]. Electronics, 2024, 13(10): 1901. doi: 10.3390/electronics13101901.
    [11] XI Ning, LI Weihui, JING Lv, et al. ZAMA: A ZKP-based anonymous mutual authentication scheme for the IoV[J]. IEEE Internet of Things Journal, 2022, 9(22): 22903–22913. doi: 10.1109/JIOT.2022.3186921.
    [12] LIU Jingwei, PENG Chuntian, SUN Rong, et al. CPAHP: Conditional privacy-preserving authentication scheme with hierarchical pseudonym for 5G-enabled IoV[J]. IEEE Transactions on Vehicular Technology, 2023, 72(7): 8929–8940. doi: 10.1109/TVT.2023.3246466.
    [13] WEI Fushan, ZEADALLY S, VIJAYAKUMAR P, et al. An intelligent terminal based privacy-preserving multi-modal implicit authentication protocol for internet of connected vehicles[J]. IEEE Transactions on Intelligent Transportation Systems, 2021, 22(7): 3939–3951. doi: 10.1109/TITS.2020.2998775.
    [14] LIANG Yangfan, LUO Entao, and LIU Yining. Physically secure and conditional-privacy authenticated key agreement for VANETs[J]. IEEE Transactions on Vehicular Technology, 2023, 72(6): 7914–7925. doi: 10.1109/TVT.2023.3241882.
    [15] WANG Denghui, YI Yuping, YAN Shan, et al. A node trust evaluation method of vehicle-road-cloud collaborative system based on federated learning[J]. Ad Hoc Networks, 2023, 138: 103013. doi: 10.1016/j.adhoc.2022.103013.
    [16] WAZID M, BAGGA P, DAS A K, et al. AKM-IoV: Authenticated key management protocol in fog computing-based Internet of vehicles deployment[J]. IEEE Internet of Things Journal, 2019, 6(5): 8804–8817. doi: 10.1109/JIOT.2019.2923611.
    [17] GOPE P, DAS A K, KUMAR N, et al. Lightweight and physically secure anonymous mutual authentication protocol for real-time data access in industrial wireless sensor networks[J]. IEEE Transactions on Industrial Informatics, 2019, 15(9): 4957–4968. doi: 10.1109/TII.2019.2895030.
    [18] BELLARE M and ROGAWAY P. Random oracles are practical: A paradigm for designing efficient protocols[C]. Proceedings of the 1st ACM Conference on Computer and Communications Security, Fairfax, USA, 1993: 62–73. doi: 10.1145/168588.168596.
    [19] NURKIFLI E H and HWANG T. Provably secure authentication for the internet of vehicles[J]. Journal of King Saud University-Computer and Information Sciences, 2023, 35(8): 101721. doi: 10.1016/j.jksuci.2023.101721.
    [20] YADAV K A and VIJAYAKUMAR P. LPPSA: An efficient Lightweight Privacy-Preserving Signature-based Authentication protocol for a vehicular ad hoc network[J]. Annals of Telecommunications, 2022, 77(7/8): 473–489. doi: 10.1007/s12243-021-00897-1.
  • 加载中
图(9) / 表(4)
计量
  • 文章访问数:  193
  • HTML全文浏览量:  54
  • PDF下载量:  15
  • 被引次数: 0
出版历程
  • 收稿日期:  2024-03-06
  • 修回日期:  2024-08-22
  • 网络出版日期:  2024-08-30
  • 刊出日期:  2024-09-26

目录

    /

    返回文章
    返回