增强的无线传感器网络认证密钥协商协议

doi:10.19678/j.issn.1000-3428.0069545

计算机工程 ›› 2025, Vol. 51 ›› Issue (11): 186-193. doi: 10.19678/j.issn.1000-3428.0069545

增强的无线传感器网络认证密钥协商协议

邓淼磊¹^,², 马晴雨¹^,², 宋庆¹^,²^,*(), 张春燕¹^,², 左志斌¹^,²

1. 河南工业大学信息科学与工程学院, 河南郑州 450001
2. 河南省粮食信息处理国际联合实验室, 河南郑州 450001

收稿日期:2024-03-12 修回日期:2024-06-03 出版日期:2025-11-15 发布日期:2024-08-08
通讯作者: 宋庆
基金资助:
国家自然科学基金(62276091); 河南省科技攻关项目(232102210132)

Enhanced Wireless Sensor Network Authentication Key Agreement Protocol

DENG Miaolei¹^,², MA Qingyu¹^,², SONG Qing¹^,²^,*(), ZHANG Chunyan¹^,², ZUO Zhibin¹^,²

1. College of Information Science and Engineering, Henan University of Technology, Zhengzhou 450001, Henan, China
2. Henan International Joint Laboratory of Grain Information Processing, Zhengzhou 450001, Henan, China

Received:2024-03-12 Revised:2024-06-03 Online:2025-11-15 Published:2024-08-08
Contact: SONG Qing

摘要/Abstract

摘要：

数据传输的安全问题是无线传感器网络(WSN)面临的最主要的安全威胁之一, 认证密钥协商(AKA)协议是解决此问题的有效方法。为解决现有协议不抗离线密钥猜测攻击、重放攻击的问题, 提出一种增强的无线传感器网络认证密钥协商协议。该协议基于椭圆曲线密码学(ECC), 实现了传感器节点与服务器之间安全的会话密钥协商。通过BAN(Burrows—Abadi—Needham)逻辑和非形式化安全性分析, 证明了该协议具有相互认证性、完美前向安全性, 能有效抵御离线密钥猜测和重放攻击等。在安全属性、计算开销和通信开销3个方面与现有轻量级AKA协议进行对比, 性能分析结果表明, 相比于现有协议, 该协议不仅满足WSN轻量级要求, 而且具备更强的安全属性和通信优势。

关键词: 椭圆曲线密码学, 身份认证, 数字签名, 密钥协商, BAN逻辑

Abstract:

Security of data transmission is one of the most significant security threats faced by Wireless Sensor Network (WSN), for which the Authentication Key Agreement (AKA) protocol is an effective solution. However, existing protocols are not resistant to offline key guessing and replay attacks. Therefore, an enhanced AKA protocol, which is based on Elliptic Curve Cryptography (ECC), is proposed for WSN in this paper to realize secure session key negotiation between sensor nodes and the server. Through Burrows—Abadi—Needham (BAN) logic and non-formal security analysis, mutual authentication of the protocol is proven to provide perfect forward security, effectively resisting offline key guessing and replay attacks. Comparing this protocol with existing lightweight AKA protocols in terms of security attributes, computational overhead, and communication overhead, the performance analysis results show that the proposed protocol not only meets the lightweight requirements of WSN but also has stronger security attributes and communication advantages.

Key words: Elliptic Curve Cryptography (ECC), authentication, digital signatures, key agreement, Burrows—Abadi—Needham (BAN) logic

邓淼磊, 马晴雨, 宋庆, 张春燕, 左志斌. 增强的无线传感器网络认证密钥协商协议[J]. 计算机工程, 2025, 51(11): 186-193.

DENG Miaolei, MA Qingyu, SONG Qing, ZHANG Chunyan, ZUO Zhibin. Enhanced Wireless Sensor Network Authentication Key Agreement Protocol[J]. Computer Engineering, 2025, 51(11): 186-193.

https://www.ecice06.com/CN/Y2025/V51/I11/186

图/表 10

图1 系统模型

Fig.1 System model

图2 密钥生成过程

Fig.2 Key generation process

图3 认证密钥协商过程

Fig.3 Authentication and key agreement processes

参考文献 28

1	QURABAT A M K A , KADHUM A Q A M , SUHA A A . An overview of periodic wireless sensor networks to the Internet of Things. IOP Conference Series: Materials Science and Engineering, 2020, 928 (3): 032055. doi: 10.1088/1757-899X/928/3/032055
2	KUNZ-JACQUES S, POINTCHEVAL D. About the security of MTI/C0 and MQV[C]//Proceedings of the 5th International Conference on Security and Cryptography for Networks. Berlin, Germany: Springer, 2006: 156-172.
3	LAW L , MENEZES A , QU M H , et al. An efficient protocol for authenticated key agreement. Designs, Codes and Cryptography, 2003, 28 (2): 119- 134. doi: 10.1023/A:1022595222606
4	KRAWCZYK H. HMQV: a high-performance secure diffie-Hellman protocol[C]//SHOUP V. Advances in cryptology-CRYPTO 2005. Berlin, Germany: Springer, 2005: 546-566.
5	LAUTER K, MITYAGIN A. Security analysis of KEA authenticated key exchange protocol[C]//YUNG M, DODIS Y, KIAYIAS A, et al. Public Key Cryptography-PKC 2006. Berlin, Germany: Springer, 2006: 378-394.
6	SHAMIR A. Identity-based cryptosystems and signature schemes[C]//BLAKLEY G R, CHAUM D. Advances in cryptology. Berlin, Germany: Springer, 1985: 47-53.
7	JIN C H , XU Y L , CHEN G H , et al. EBIAC: efficient biometric identity-based access control for wireless body area networks. Journal of Systems Architecture, 2021, 121, 102317. doi: 10.1016/j.sysarc.2021.102317
8	BABU E S , DADI A K , SINGH K K , et al. A distributed identity-based authentication scheme for Internet of Things devices using permissioned blockchain system. Expert Systems, 2022, 39 (10): e12941. doi: 10.1111/exsy.12941
9	RAJU K , CHINNADURAI M . An identity-based secure and optimal authentication scheme for the cloud computing environment. Computers, Materials[WT《Times New Roman》]& Continua, 2021, 69 (1): 1057- 1072.
10	JAO D. Elliptic curve cryptography[M]//STAVROULAKIS P, STAMP M. Handbook of information and communication security. Berlin, Germany: Springer, 2010: 35-57.
11	李贵勇, 张航, 韩才君, 等. 面向无线传感器网络的认证密钥协商机制. 小型微型计算机系统, 2024, 45 (5): 1204- 1208.
	LI G Y , ZHANG H , HAN C J , et al. Authentication and key agreement mechanism for wirelesssensor networks. Journal of Chinese Computer Systems, 2024, 45 (5): 1204- 1208.
12	SEO S H , WON J , SULTANA S , et al. Effective key management in dynamic wireless sensor networks. IEEE Transactions on Information Forensics and Security, 2015, 10 (2): 371- 383. doi: 10.1109/TIFS.2014.2375555
13	WU L B , ZHANG Y B , LI L , et al. Efficient and anonymous authentication scheme for wireless body area networks. Journal of Medical Systems, 2016, 40 (6): 134. doi: 10.1007/s10916-016-0491-8
14	DEBIAO H , SHERALI Z , NEERAJ K , et al. Anonymous authentication for wireless body area networks with provable security. IEEE Systems Journal, 2017, 11 (4): 2590- 2601. doi: 10.1109/JSYST.2016.2544805
15	DAS K A , WAZID M , YANNAM R A , et al. Provably secure ECC-based device access control and key agreement protocol for IoT environment. IEEE Access, 2019, 7, 755382- 55397.
16	王向阳. 物联网认证密钥协商协议设计与分析技术研究[D]. 郑州: 战略支援部队信息工程大学, 2023.
	WANG X Y. Research on design and analysis of authentication key agreement protocol for Internet of Things[D]. Zhengzhou: Information Engineering University, 2023. (in Chinese)
17	ISLAM S H , BISWAS G P . A pairing-free identity-based two-party authenticated key agreement protocol for secure and efficient communication. Journal of King Saud University-Computer and Information Sciences, 2017, 29 (1): 63- 73. doi: 10.1016/j.jksuci.2015.01.004
18	DANG L , XU J , CAO X , et al. Efficient identity-based authenticated key agreement protocol with provable security for vehicular ad hoc networks. International Journal of Distributed Sensor Networks, 2018, 14 (4): 1550147718772545.
19	BALA S , VERMA A K . A non-interactive certificateless two-party authenticated key agreement protocol for wireless sensor networks. International Journal of Ad Hoc and Ubiquitous Computing, 2016, 21 (2): 140- 155. doi: 10.1504/IJAHUC.2016.075187
20	DENG L Z . An improved certificateless two-party authenticated key agreement protocol for wireless sensor networks. International Journal of Ad Hoc and Ubiquitous Computing, 2020, 34 (4): 208. doi: 10.1504/IJAHUC.2020.108576
21	KUMAR M, SAXENA P C. Pairing-free authenticated identity-based two-party key agreement protocol for resource-constraint devices[C]//SINGH P K, PAPRZYCKI M, BHARGAVA B, et al. Futuristic trends in network and communication technologies. Berlin, Germany: Springer, 2018: 425-440.
22	刘畅, 王晋, 田里, 等. 一种适用于基于身份的认证密钥协商的逆向防火墙协议. 重庆大学学报, 2022, 45 (5): 21-32, 42.
	LIU C , WANG J , TIAN L , et al. A reverse firewall protocol for identity-based authenticated key agreement. Journal of Chongqing University, 2022, 45 (5): 21-32, 42.
23	宋庆, 马米米, 邓淼磊, 等. 轻量级的两方认证密钥协商协议. 计算机工程与应用, 2024, 60 (14): 283- 293.
	SONG Q , MA M M , DENG M L , et al. Lightweight two-party authenticated key agreement protocol. Computer Engineering and Applications, 2024, 60 (14): 283- 293.
24	JIA X Y , HE D B , KUMAR N , et al. A provably secure and efficient identity-based anonymous authentication scheme for mobile edge computing. IEEE Systems Journal, 2020, 14 (1): 560- 571. doi: 10.1109/JSYST.2019.2896064
25	XIE D , YANG J H , BIAN W X , et al. An improved identity-based anonymous authentication scheme resistant to semi-trusted server attacks. IEEE Internet of Things Journal, 2023, 10 (1): 734- 746. doi: 10.1109/JIOT.2022.3203991
26	周海东, 王三超. 数字签名技术在网络通信安全中的应用. 集成电路应用, 2023, 40 (3): 344- 345.
	ZHOU H D , WANG S C . Application of digital signature technology in network communication security. Application of IC, 2023, 40 (3): 344- 345.
27	BURROWS M , ABADI M , NEEDHAM R . A logic of authentication. ACM Transactions on Computer Systems, 1990, 8 (1): 18- 36. doi: 10.1145/77648.77649
28	HUANG W . ECC-based three-factor authentication and key agreement scheme for wireless sensor networks. Scientific Reports, 2024, 14 (1): 1787. doi: 10.1038/s41598-024-52134-z

[1]	王静怡, 刘百祥, 方宁, 彭凌祺. 基于区块链与属性密码体制的匿名数据共享访问控制[J]. 计算机工程, 2023, 49(10): 41-52.
[2]	吴甜甜, 杨亚芳, 赵运磊. 一种面向车联网通信的条件隐私保护认证协议[J]. 计算机工程, 2021, 47(6): 14-22.
[3]	刘期烈, 陈澄. 基于区块链的V2G匿名身份认证方案[J]. 计算机工程, 2021, 47(11): 22-28.
[4]	赵宗渠, 黄鹂娟, 范涛, 马少提. 格上基于KEM的认证密钥交换协议[J]. 计算机工程, 2020, 46(7): 122-128.
[5]	牛淑芬, 杨平平, 谢亚亚, 王彩芬, 杜小妮. 电子邮件系统中指定服务器的关键字搜索加密方案[J]. 计算机工程, 2020, 46(10): 137-142,150.
[6]	孙海燕, 李玲玲, 张玲, 张建伟, 黄万伟. 一种增强的移动互联网身份基认证密钥协商协议[J]. 计算机工程, 2019, 45(9): 153-160,182.
[7]	廖方圆, 甘植旺. Android系统签名的漏洞分析与检测[J]. 计算机工程, 2019, 45(8): 25-30.
[8]	王泽,陈永乐,王潇健. 基于CSI的WLAN认证及攻击定位方案[J]. 计算机工程, 2019, 45(6): 181-187.
[9]	左黎明,周庆,陈兰兰. 一种可证安全高效无证书短签名方案[J]. 计算机工程, 2019, 45(6): 193-198.
[10]	左黎明, 夏萍萍, 陈祚松. 一种可证安全的短盲签名方案[J]. 计算机工程, 2019, 45(12): 114-118.
[11]	王彩芬,陈丽,张玉磊. 基于理想格的用户匿名口令认证密钥协商协议[J]. 计算机工程, 2018, 44(4): 212-217.
[12]	陈振宇,杨阳,季赛,刘文杰. 基于量子委托计算模式的半量子密钥协商[J]. 计算机工程, 2018, 44(3): 178-181,188.
[13]	蒋存波,孔祥丽,金红,焦阳. 具有射频识别功能的嵌入式低功耗智能钥匙设计[J]. 计算机工程, 2017, 43(7): 54-59.
[14]	李子臣,刘博雅,王培东,杨亚涛. 基于SM2与零知识的射频识别双向认证协议[J]. 计算机工程, 2017, 43(6): 97-100,104.
[15]	冯超逸,赵一鸣. 基于理想格的可证明安全数字签名方案[J]. 计算机工程, 2017, 43(5): 103-107.

选择文件类型/文献管理软件名称

选择包含的内容

增强的无线传感器网络认证密钥协商协议

Enhanced Wireless Sensor Network Authentication Key Agreement Protocol

RichHTML

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 10

参考文献 28

相关文章 15

编辑推荐

Metrics

本文评价

模态框（Modal）标题

选择文件类型/文献管理软件名称

选择包含的内容

增强的无线传感器网络认证密钥协商协议

Enhanced Wireless Sensor Network Authentication Key Agreement Protocol

RichHTML

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 10

参考文献 28

相关文章 15

编辑推荐

Metrics

本文评价