基于国密SM9的物联网可重构密钥安全认证协议设计
Design of Reconfigurable Key Security Authentication Protocol for IoT Based on National Cryptography SM9
黄旺旺 1周骅 1王代强 2赵麒3
作者信息
- 1. 贵州大学大数据与信息工程学院,贵阳 550025
- 2. 贵州大学大数据与信息工程学院,贵阳 550025;贵州民族大学机械电子工程学院,贵阳 550025
- 3. 贵州民族大学机械电子工程学院,贵阳 550025
- 折叠
摘要
为增强通信协议的安全性和可靠性,提高用户隐私安全性,文章设计了一种基于国密SM9 的物联网可重构密钥安全认证协议,旨在保证数据来源安全和数据传输安全.该协议仅使用倍点、点加和哈希操作就实现了共享密钥的封装与重构,并融合了伪一次一密和一次一身份机制,以提高共享密钥的传输安全性和传输效率,保证了密文数据传输与身份认证的安全性.文章所提方案经过ProVerif形式化安全仿真验证满足 9 个关键的安全属性,与其他协议相比,计算开销和通信开销更低,高度适用于资源受限的工业物联网设备.
Abstract
To enhance the security and reliability of communication protocols and improve user privacy,a secure authentication protocol for IoT was designed based on the national cryptographic SM9.This protocol aimed to ensure both data source security and data transmission security.Using only point doubling,point addition,and Hash operations,the protocol achieved the encapsulation and reconstruction of shared keys.Additionally,it integrated pseudo one-time-one-key and one-time-one-identity mechanisms to enhance the security and efficiency of key transmission.The protocol guaranteed the security of ciphertext data transmission and identity authentication.The proposed scheme has been formally verified through ProVerif to satisfy nine critical security properties.Compared to other protocols,it incurs lower computational and communication overheads,making it highly suitable for resource-constrained industrial IoT devices.
关键词
SM9/身份认证/密钥封装/密钥重构Key words
SM9/identity authentication/key encapsulation/key reconstruction引用本文复制引用
出版年
2024
NETL
NSTL
万方数据