分布式电力移动终端隐私增强认证方案
Distributed privacy-enhanced authentication protocol for smart grid mobile terminals
邓建锋 1黄宝鑫 1肖焯 1许露珉 1胡厚鹏2
作者信息
- 1. 南方电网数字电网研究院有限公司,广州 510613
- 2. 南方电网贵州电力科学研究院,贵阳 550002
- 折叠
摘要
针对智能电网移动终端实际环境下轻量化认证和多种密钥协商需求,提出一个基于区块链的轻量级多令牌双向匿名认证协议.方案通过区块链的分散存储机制实现系统身份认证的去中心化,提高了认证的灵活性.基于椭圆曲线生成随机假名,有效保护了用户身份隐私.生成移动终端会话密钥时融合了时敏令牌和多项式令牌机制,进一步提高了会话密钥安全性.采用BAN(Burrows-Abadi-Needham)逻辑证明了协议的正确性及非形式化证明了协议的安全性,并通过仿真实验评估了协议的性能.分析结果表明,该方案具有良好的安全性和实用性.
Abstract
Aiming at the requirements of lightweight authentication and multiple key agreement in the actual environment of smart grid mobile terminals,this paper proposed a lightweight multi-token mutual anonymous authentication protocol based on blockchain.The protocol realized the decentralization of system identity authentication through the decentralized storage mechanism of blockchain and improved the flexibility of authentication.It generated random pseudonyms based on elliptic curve effectively to protect user identity privacy.The mechanism of time sensitive token and polynomial token was integrated to generate the session key of mobile terminal,which further improved the security of session key.The correctness of the protocol was proved by BAN logic and the security of the protocol was proved by non-formalization.The performance of the protocol was evaluated by simulation experiments.The analysis results show that the scheme has good security and practicability.
关键词
隐私保护/区块链/BAN逻辑/椭圆曲线/匿名认证Key words
privacy protection/blockchain/BAN logic/elliptic curve/anonymous authentication引用本文复制引用
基金项目
南方电网有限责任公司科技项目(GZKJXM20200601)
出版年
2024
国家科技期刊平台
NSTL
万方数据