作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程

• •    

车联网中支持非法签名定位的无证书匿名认证方案

  • 发布日期:2023-12-05

Certificateless Anonymous Authentication Scheme with Illegal Signatures Localization for Internet of Vehicles

  • Published:2023-12-05

摘要: 车联网环境中,车辆通过互联网连接到公共网络,车辆信息在传输过程中很容易遭受到攻击者的各种恶意攻击,从 而导致车辆隐私信息泄露甚至威胁用户生命安全。2022 年,为了保障车辆间公开通信中消息传输的安全性和隐私性,刘雪艳 等提出了一种车联网环境下的无证书匿名认证方案,并证明该方案在随机预言机模型下满足签名的不可伪造性。然而,通过 安全性分析发现,该方案无法抵抗公钥替换攻击以及车辆之间的合谋攻击。针对上述安全缺陷,提出了一个改进的车联网无 证书匿名认证方案。新方案在随机预言模型下基于椭圆曲线离散对数问题存在不可伪造性,同时也能够抵抗车辆之间联合发 起的合谋攻击。此外,该方案支持非法签名的快速查询,能在聚合签名验证失败后,通过建立非法签名与聚合签名验证等式 的关联性节省对右子节点中非法签名的查找次数,从而迅速定位到非法签名的位置。与同类方案相比,改进方案在聚合签名 验证阶段的计算开销减少了至少 25%,并能满足更多的安全属性。

Abstract: In the Internet of Vehicles environment, vehicles are connected to the public network through the Internet, and the information is vulnerable to various malicious attacks from attackers during the transmission, which leads to the leakage of vehicle privacy information and even threatens the safety of users. In 2022, to guarantee the security and privacy of message transmission in public communication between vehicles, Liu et al. proposed a certificateless anonymous authentication scheme for Internet of Vehicles and proved that the scheme satisfies the signature unforgeability under the random oracle model. However, by the security analysis, it is revealed that their scheme is vulnerable to public key substitution attacks and collusion attacks among vehicles. In light of the above security issues, an enhanced certificateless anonymous authentication scheme for Internet of Vehicles is proposed. The proposed scheme has unforgeability based on the elliptic curve discrete logarithm problem under the random oracle model and also resists coalition attacks jointly launched among vehicles. Otherwise, the improved scheme supports fast illegal signatures query and can reduce the number of searches for illegal signatures in the right child node by establishing the correlation between illegal signatures and aggregate signature verification equation after aggregate signature verification fails. Our scheme declines the computation cost in the aggregate signature verification stage by at least 25% and meets more security properties than similar solutions.