基于车联网的特点,提出一种基于树的轻量级群组密钥管理机制(lightweight tree group key management mechanism,LTGKM),实现了车联网中组播和广播通信的安全性.LTGKM采用层次化方式进行群组密钥的生成、分发和更新;各个管理节点采用HMAC函数作为密钥导出函数生成对应群组密钥,并基于加密认证算法将群组密钥层层分发到叶子节点;密钥更新时新加入节点由父节点生成新的群组密钥并分发给新节点,其余节点自行更新群组密钥;用户离开时非叶子节点自行更新群组密钥,叶子节点由自己父节点分发新的群组密钥.安全性分析表明,LTGKM实现了群组密钥生成和更新的随机性、前向安全和后向安全、密钥分发的机密性、完整性和不可否认性.性能分析实验结果表明,LTGKM在存储、计算和通信开销等方面都具有明显优势.
Group Key Management Mechanism for Internet of Vehicles
Based on the characteristics of the Internet of vehicles(IoV),a tree-based lightweight group key management mechanism(Lightweight Tree Group Key Management Mechanism,LTGKM)is proposed to realize the security of multicast and broadcast communications in the IoV.LTGKM adopts a hierarchical approach to generate,distribute and update the group keys.The management node of various layers generates the corresponding group key using the HMAC function as the key derivation function,and distributes the group key to the child node based on the encrypted certification algorithm;When a new node joins,the parent node generates a new group key and distribute it to the new node,and the remaining nodes update the group key by themselves;when the user leaves,the non-leaf node updates the group key by themselves,and the new group key is distributed to the leaf node by its father node.Security analysis shows that LTGKM realizes the randomness,forward security,and backward security during the group key generation and update,and the confidentiality,integrity and uniformity during key distribution.Performance analysis shows that LTGKM has obvious advantages in storage,computing and communication.
Internet of vehiclesgroup keykey treelightweightencryption authentication
国家科技期刊平台
NSTL
万方数据
