In the IoT environment,in order to ensure the confidentiality and integrity of communication data,the security of data encryption keys is particularly important.The key generally adopts a centralized storage mechanism.When the central entity is untrustworthy,it will cause the risk of key leakage.Therefore,the integrity of the key needs to be guaranteed during the distribution process,but ordinary signature schemes are often more complicated.Aiming at the problems of centralization of key distribution and complex key distribution algorithm,a key distribution protocol based on one-time hash signature and consortium blockchain is proposed.Firstly,a lightweight one-time hash signature is used for user registration and authentication.Meanwhile,in order to effectively detect and defend against man-in-the-middle attacks that may occur in the process of using one-time hash signature,Hyperledger Fabric federation chain is used to store signature credentials.Users can obtain signature credentials from the federation chain for authentication.Then,a symmetric key distribution scheme is designed based on Hyperledger Fabric chain and ElGamal cryptosystem.Finally,the security of the key distribution protocol is analyzed from two aspects of theoretical analysis and Scyther formalized protocol analysis tool,and the results show that the protocol improves the efficiency of key distribution while ensuring the security of key distribution.
关键词
一次哈希签名/联盟链/对称密钥分发协议/通信数据保护/安全性
Key words
one-time hash signature/consortium blockchain/symmetric key distribution protocol/protection of communication data/secu-rity
维普
万方数据