| 物联网移动节点直接匿名漫游认证协议 |
| |
| 引用本文: | 周彦伟,杨波. 物联网移动节点直接匿名漫游认证协议[J]. 软件学报, 2015, 26(9): 2436-2450 |
| |
| 作者姓名: | 周彦伟 杨波 |
| |
| 作者单位: | 陕西师范大学 计算机科学学院, 陕西 西安 710062;保密通信重点实验室, 四川 成都 610041;信息安全国家重点实验室(中国科学院 信息工程研究所), 北京 100093,陕西师范大学 计算机科学学院, 陕西 西安 710062;保密通信重点实验室, 四川 成都 610041;信息安全国家重点实验室(中国科学院 信息工程研究所), 北京 100093 |
| |
| 基金项目: | 国家自然科学基金(61572303, 61272436, 61402275); 中国科学院信息工程研究所信息安全国家重点实验室开放课题(No.2015-MS-10); 保密通信重点实验室基金(No.9140C110206140C11050); 中央高校基本科研业务费专项基金(No.GK2015 04016); 陕西师范大学优秀博士论文项目(No.X2014YB01) |
| |
| 摘 要: | 无线网络下传统匿名漫游协议中远程域认证服务器无法直接完成对移动节点的身份合法性验证,必须在家乡域认证服务器的协助下才能完成,导致漫游通信时延较大,无法满足物联网感知子网的快速漫游需求.针对上述不足,提出可证安全的物联网移动节点直接匿名漫游认证协议,远程域认证服务器通过与移动节点间的1轮消息交互,可直接完成对移动节点的身份合法性验证.该协议在实现移动节点身份合法性验证的同时,具有更小的通信时延、良好的抗攻击能力和较高的执行效率.相较于传统匿名漫游协议而言,该协议快速漫游的特点更适用于物联网环境.安全性证明表明,该协议在CK安全模型下是可证安全的.
|
| 关 键 词: | 物联网 匿名漫游 直接认证 CK安全模型 |
| 收稿时间: | 2014-02-16 |
| 修稿时间: | 2014-06-26 |
Provable Secure Authentication Protocol with Direct Anonymity for Mobile Nodes Roaming Service in Internet of Things |
| |
| ZHOU Yan-Wei and YANG Bo. Provable Secure Authentication Protocol with Direct Anonymity for Mobile Nodes Roaming Service in Internet of Things[J]. Journal of Software, 2015, 26(9): 2436-2450 |
| |
| Authors: | ZHOU Yan-Wei and YANG Bo |
| |
| Affiliation: | School of Computer Science, Shaanxi Normal University, Xi'an 710062, China;Science and Technology on Communication Security Laboratory, Chengdu 610041, China;State Key Laboratory of Information Security Institute of (Information Engineering, The Chinese Academy of Sciences), Beijing 100093, China and School of Computer Science, Shaanxi Normal University, Xi'an 710062, China;Science and Technology on Communication Security Laboratory, Chengdu 610041, China;State Key Laboratory of Information Security Institute of (Information Engineering, The Chinese Academy of Sciences), Beijing 100093, China |
| |
| Abstract: | In the traditional anonymous roaming mechanism of wireless network, remote network authentication server (RS) can not directly authenticate the identity legitimacy of roaming mobile nodes. Thus, only with the aid of home domain authentication server (HS) can RS fulfill the authentication, which results in longer time delay in roaming communication and failure to meet the fast roaming needs of sensor subnets. To address the defects mentioned above, this paper proposes a direct anonymous authentication protocol with provable secure mobile nodes in Internet of things, enabling the mobile nodes to fulfill the legitimacy authentication of their identity through one round of message exchange with RS. The protocol proposed in this paper not only achieves the legitimacy authentication of anonymous identity, but also has shorter time delay and higher operating efficiency and good anti-attack capability. Fast roaming also makes it more suitable for the environment of Internet of things in comparison with the traditional anonymous roaming protocol. The security proof shows that the new protocol is provably secure in the CK security model. |
| |
| Keywords: | Internet of things anonymous roaming direct authentication CK security model |
|
| 点击此处可从《软件学报》浏览原始摘要信息 |
|
点击此处可从《软件学报》下载全文 |
|
