###
工程科学与技术:2018,50(2):148-153
←前一篇   |   后一篇→
本文二维码信息
码上扫一扫!
基于身份盲签名的无线Mesh网络匿名切换认证方案
(1.福建师范大学 数学与信息学院, 福建 福州 350007;2.福建省网络安全与密码技术重点实验室, 福建 福州 350007)
Anonymous Handover Authentication Scheme Based on Identity-based Blind Signature for Wireless Mesh Networks
(1.College of Mathematics and Informatics,Fujian Normal Univ.,Fuzhou 350007,China;2.Fujian Provincial Key Lab.of Network Security and Cryptology,Fuzhou 350007,China)
摘要
图/表
参考文献
相似文献
本文已被:浏览 2086次   下载 1459
投稿时间:2017-08-06    修订日期:2018-02-28
中文摘要: 无线Mesh网络客户端的强移动性使得其需要在无线Mesh路由器之间进行频繁切换。为了解决当前无线Mesh网络中的切换认证方案无法同时实现高效率和高隐私保护的问题,利用密码学中的基于身份盲签名的思想,提出了一种具有隐私保护的高效的无线Mesh网络匿名切换认证方案。首先,无线Mesh路由器向认证服务器发送自己的身份标识获取用于生成用户假名时所使用的公私钥对。其次,无线Mesh客户端通过向无线Mesh路由器发送盲消息请求切换认证过程中所需要的假名。最后,无线Mesh客户端向目标路由器发送预先获取的假名完成切换认证。一方面,本方案利用基于身份的密码技术,有效地减少了整个网络系统由于传统公钥证书的生成、管理、撤销所产生的消耗。另一方面,本方案通过盲签名技术,使得客户端只需使用提前获得的假名进行切换认证,在实现对用户的真实身份信息与运动轨迹保密的同时,能有效地对客户端的数据隐私进行保护。安全分析表明该方案满足双向认证、匿名性、可撤销性和抵抗攻击性等安全要求;性能分析表明,本方案中无复杂的双线性对运算,而且仅需两次握手就能实现切换认证过程。与其他方案相比较,能有效地降低通信代价并减少计算次数,进而减轻认证服务器的负载以及提高认证效率。
中文关键词: 无线Mesh网络  认证  数据隐私  密码学
Abstract:The strong mobility of wireless mesh clients incurs the frequent handover among multiple wireless mesh routers.In order to overcome the problem that current handover authentication schemes cannot achieve high efficiency and privacy protection simultaneously,an efficient anonymous handover authentication scheme with privacy protection was proposed.The proposed scheme was based on the idea of identity-based blind signature in cryptography.Firstly,the wireless mesh router sends its identity to the authentication server to get a key pair that is used to generate the pseudo identities for the wireless mesh client.Secondly,the wireless mesh client sends blind messages to the wireless mesh router to request the pseudo identities that is used in the handover authentication phase.Finally,the wireless mesh client sends a pre-acquired pseudo identity to the target router to complete the handover authentication.The proposed scheme adopted identity-based cryptographic technology,which effectively reduces the whole network consumption caused by the generation,management and revocation of the traditional public key certificate.On the other hand,through the blind signature technique,the client only needs to use thepre-acquired pseudo identity for handover authentication.Using the pseudo identity could protect the confidentiality of the user's true identity information and the moving path,as well as the data privacy of the client.Security analysis showed that the proposed scheme can satisfied the security requirements of mutual authentication,anonymity,revocation and resistance to attacks.Performance analysis showed that the handover authentication process is achieved after two handshakes without pairing operations.Comparing with other schemes,the proposed scheme effectively reduces the communication cost and the number of calculation times,lightens the load of authentication server,and improves the authentication efficiency as well.
文章编号:201700635     中图分类号:TP393;TN915.08    文献标志码:
基金项目:国家自然科学基金面上资助项目(61771140);国家自然科学基金海峡联合基金重点资助项目(U1405255);福州市科技局资助项目(2015-G-59);福建省高校产学合作科技重大资助项目(2017H6005);福建省教育厅资助项目(JAT160123)
作者简介:许力(1970-),男,教授,博士生导师.研究方向:网络与信息安全;物联网与云计算;智能信息处理;复杂系统和网络的建模与仿真.E-mail:xuli@fjnu.edu.cn
引用文本:
许力,王栋城,苏彬庭,王峰.基于身份盲签名的无线Mesh网络匿名切换认证方案[J].工程科学与技术,2018,50(2):148-153.
XU Li,WANG Dongcheng,SU Binting,WANG Feng.Anonymous Handover Authentication Scheme Based on Identity-based Blind Signature for Wireless Mesh Networks[J].Advanced Engineering Sciences,2018,50(2):148-153.