无线传感器网络用户认证协议研究进展

doi:10.11959/j.issn.2096-109x.2017.00129

网络与信息安全学报 ›› 2017, Vol. 3 ›› Issue (1): 1-12.doi: 10.11959/j.issn.2096-109x.2017.00129

• 综述 • 下一篇

无线传感器网络用户认证协议研究进展

房卫东¹,张武雄^1,²(),单联海^1,³,何为¹,陈伟⁴

¹ 中国科学院上海微系统与信息技术研究所无线传感器网络与通信重点实验室，上海 200051
² 上海无线通信研究中心，上海 201210
³ 上海物联网有限公司，上海 201899
⁴ 中国矿业大学计算机科学与技术学院，徐州 221116

修回日期:2016-11-25 出版日期:2017-01-15 发布日期:2020-03-20
作者简介:房卫东（1971-），男，山东济南人，博士，中国科学院上海微系统与信息技术研究所高级工程师，主要研究方向为无线传感器网络可信传输技术、信任管理、隐私保护。|张武雄（1985-），男，湖北孝感人，博士，中国科学院上海微系统与信息技术研究所助理研究员，主要研究方向为车联网体系架构及组网技术、异构多网协作。|单联海（1980-），男，山东潍坊人，博士，中国科学院上海微系统与信息技术研究所副研究员，主要研究方向为物联网/无线传感器网络接入技术、能效均衡。|何为（1980-），男，福建光泽人，博士，中国科学院上海微系统与信息技术研究所副研究员，主要研究方向为物联网、信号与信息处理。|陈伟（1978-），男，江苏徐州人，博士，中国矿业大学副教授，主要研究方向为智能信息处理、无线通信、大数据与云计算。
基金资助:
：国家自然科学基金资助项目(61471346);上海市自然科学基金资助项目(14ZR1439700);国家科技重大专项基金资助项目(2014ZX03005001);上海市科技重大基金资助项目(15DZ1100400);中国科学院科技服务网络计划基金资助项目(kfj-sw-sts-155);国家自然科学基金委员会—山西省人民政府煤基低碳联合基金资助项目(U1510115)

Survey on user authentication protocol in wireless sensor network

Wei-dong FANG¹,Wu-xiong ZHANG^1,²(),Lian-hai SHAN^1,³,Wei HE¹,Wei CHEN⁴

¹ Key Laboratory of Wireless Sensor Network＆Communication, Shanghai Institute of Microsystem and Information Technology, Chinese Academy of Sciences, Shanghai 200051, China
² Shanghai Research Center for Wireless Communication, Shanghai 201210,China
³ Shanghai Internet of Things Co., Ltd, Shanghai 201899, China
⁴ School of Computer Science and Technology, China University of Mining and Technology, Xuzhou 221116, China

Revised:2016-11-25 Online:2017-01-15 Published:2020-03-20
Supported by:
The National Natural Science Foundation of China(61471346);Shanghai Natural Science Foundation(14ZR1439700);The National Science and Technology Major Project(2014ZX03005001);Shanghai Municipal Scienceand Technology Committee Program(15DZ1100400);Science and Technology Service Network Program of CAS(kfj-sw-sts-155);The National Natural Science Foundation andShanxi Provincial People’s Government Jointly Funded Projectof China for Cool Base and Low Carbon(U1510115)

摘要/Abstract

摘要：

无线传感器网络（WSN,wireless sensor network）用户认证技术是传感器网络验证用户的合法性以避免网络数据信息泄露的有效手段之一，同时，用户也需验证传感器网络的合法性，避免获得错误或虚假数据信息。由于WSN节点能量、通信和计算能力等资源受限，且通常部署在敌对或无人值守的区域，因此传统用户认证协议并不完全适用于WSN。从WSN认证协议的安全攻击入手，给出其安全需求及理论基础，归纳总结了设计流程，针对其安全性分析，描述了安全攻击模型，并综述了形式化分析验证工具AVISPA体系结构和HLPSL语言构成。评述了当前的各种WSN用户认证协议，建议了未来研究方向，这些研究工作将有助于WSN用户认证协议的设计、分析与优化。

关键词: 无线传感器网络, 安全性, 用户认证协议, 双因素, 三因素

Abstract:

In wireless sensor network (WSN), the user authentication technology is an effective approach, which can guarantee the user's validity, avoid WSN's information disclosure. Meanwhile, the users also need to verify the WSN's validity, avoid obtaining incorrect or false information. However, since the sensor nodes have limited energy, communications and computing capacity, and they are usually deployed in hostile or unattended environment, the traditional user authentication protocol (UAP) is not entirely suitable for WSN. The security attacks were introduced for the UAP in WSN, its secure requirements and the theoretical foundation were given, and then the UAP's design processes were summarized. For the analysis of its security, the attack model was described, and the automated vali-dation of internet Security protocols and applications (AVISPA) and the high level protocols specification language (HLPSL) were overviewed in detail. Then, the current UAPs were reviewed in WSN, the future research directions were proposed. These researches will contribute to the design, analysis and optimization for the UAP in WSN.

Key words: WSN, security, user authentication protocol, two-factors, three-factors

中图分类号:

TP393

房卫东,张武雄,单联海,何为,陈伟. 无线传感器网络用户认证协议研究进展[J]. 网络与信息安全学报, 2017, 3(1): 1-12.

Wei-dong FANG,Wu-xiong ZHANG,Lian-hai SHAN,Wei HE,Wei CHEN. Survey on user authentication protocol in wireless sensor network[J]. Chinese Journal of Network and Information Security, 2017, 3(1): 1-12.

图/表 5

参考文献 56

[1]	GOZALVEZ J . New 3GPP standard for IoT[J]. IEEE Vehicular Technology Magazine, 2016, 11 (1): 14-20.
[2]	GUO M , LIU Y , YU H , et al. An overview of smart city in China[J]. China Communications, 2016, 13 (5): 203-211.
[3]	XIONG Z , SHENG H , RONG W G , et al. Intelligent transportation systems for smart cities: a progress review[J]. Science China (In-formation Sciences), 2012 (55): 2908-2914,
[4]	MOIS G , SANISLAV T , FOLEA S C , A cyber-physical system for environmental monitoring[J]. IEEE Transactions on Instrumenta-tion and Measurement, 2016, 65 (6): 1463-1471.
[5]	ASKRABA S , PAAP A , ALAMEH K , et al. Laser-stabilized real-Time plant discrimination sensor for precision agriculture[J]. IEEE Sensors Journal, 2016, 16 (17): 6680-6686.
[6]	SHAH S H , IQBAL A , SHAH S S A , Remote health monitoring through an integration of wireless sensor networks, mobile phones＆Cloud Computing technologies[C]// IEEE Global Humanitarian Technology Conference. 2013: 401-405.
[7]	YANG Y , ZHAO C , YAO S , et al. Delay performance of net-work-coding-based epidemic routing[J]. IEEE Transactions on Ve-hicular Technology, 2016, 65 (5): 3676-3684.
[8]	CHEN W , JIANG X , TANG Z , et al. Context-based global multi-class semantic image segmentation by wireless multimedia sensor networks[J]. Artificial Intelligence Review, 2015, 43 (4): 579-591.
[9]	YANG Y , ZHANG W , WEI K , et al. Power reduction for mobile devices by deploying low-power base stations[J]. IET Communica-tions, 2014, 8 (18): 3372-3380.
[10]	REN Y , ZADOROZHNY V I , OLESHCHUK V A , et al. A novel approach to trust management in unattended wireless sensor net-works[J]. IEEE Transactions on Mobile Computing, 2014, 13 (7): 1409-1423.
[11]	ZHANG D , LI Y , NING Z , et al. A multi-tag secure network coding scheme against pollution attacks in WSNs[J]. Journal of Computa-tional Information Systems, 2015, 11 (12): 4413-4420.
[12]	DU X , GUIZANI M , XIAO Y , et al. Two tier secure routing proto-col for heterogeneous sensor networks[J]. IEEE Transactions on Wireless Communications, 2007, 6 (9): 3395-3401.
[13]	ZHU C , ZHOU M Z , XU J S , et al. A secure data fusion algorithm based on behavior trust in wireless sensor networksC]// IEEE 4th International Conference on Wireless Communications, Network-ing and Mobile Computing, 2008: 1-4.
[14]	CHEN X , MAKKI K , YEN K , et al. Sensor network security: a survey[J]. IEEE Communications Surveys＆Tutorials, 2009, 11 (2): 52-73.
[15]	SINGH S K , SINGH M P , SINGH D K , A survey on network secu-rity and attack defense mechanism for wireless sensor networks[J]. International Journal of Computer Trends and Technology, 2011, 1 (2): 9-17.
[16]	KUMARI S , KHAN M K , ATIQUZZAMAN M , User authentica-tion schemes for wireless sensor networks: a review[J]. Ad Hoc Networks, 2015, 27: 159-194.
[17]	KAUSHAL K , KAUR T . A survey on attacks of WSN and their security mechanisms[J]. International Journal of Computer Appli-cations, 2015, 118 (18): 1-4.
[18]	HUANG Z H , WANG Y L . Survey of security Technologies on wireless sensor networks[J]. Journal of Sensors, 2015, 2015 (4): 1-9.
[19]	BANERJEE P , CHATTERJEE T , DASBIT S . LoENA: low- over-head encryption based node authentication in WSN[C]// IEEE In-ternational Conference on Advances in Computing, Communica-tions and Informatics, 2015: 2126-2132.
[20]	WANG H Y . Wireless sensor networks based on a new block en-cryption algorithm[J]. Applied Mechanics and Materials, 2014: 454-459.
[21]	YANG W , HU J , WANG S . A delaunay triangle-based fuzzy ex-tractor for fingerprint authentication[C]// IEEE 11th International Conference on Trust, Security and Privacy in Computing and Communications. 2012: 66-70.
[22]	RAMANUJAM R , SUNDARARAJAN V , SURESH S P . Extending dolev-yao with assertions[M]// Information Systems Security. Berlin:Springer, 2014: 50-68.
[23]	K?HLER D , KüSTERS R , WILKE T . A dolev-yao-based defini-tion of abuse-free protocols[M]// Automata, Languages and Pro-gramming. Berlin Heidelberg:Springer, 2006: 95-106.
[24]	KIM J , LEE D , JEON W , et al. Security analysis and improvements of two-factor mutual authentication with key agreement in wireless sensor networks[J]. Sensors, 2014, 14 (4): 6443-6462.
[25]	HURTADO A J A , BASTARRICA M C , BERGEL A . Avispa: a tool for analyzing software process models[J]. Journal of Software:Evolution and Process, 2014, 26 (4): 434-450.
[26]	ARMANDO A , BASIN D , BOICHUT Y , et al. The AVISPA tool for the automated validation of internet security protocols and ap-plications[C]// Lecture Notes in Computer Science. 2005, 3576 (6): 135-165.
[27]	VIGANò L . Automated security protocol analysis with the AVISPA tool[J]. Electronic Notes in Theoretical Computer Science. 2006, 155 (1): 61-86.
[28]	ROGOWSKI M , SAEED K , RYBNIK M , et al. User authentication for mobile devices[M]// Computer Information Systems and Indus-trial Management. Berlin Heidelberg: Springer, 2013: 47-58.
[29]	WONG K H M , ZHENG Y , CAO J , et al. A dynamic user authenti-cation scheme for wireless sensor networks[C]// IEEE International Conference on Sensor Networks, Ubiquitous, and Trustworthy Computing. 2006: 1-8.
[30]	JAMIL N , SAMEON S S , MAHMOOD R . A user authentication scheme based on identity-bits commitment for wireless sensor net-works[C]// IEEE Second International Conference on Network Ap-plications Protocols and Services. 2010: 61-66.
[31]	TSENG H R , JAN R H , YANG W . An improved dynamic user authentication scheme for wireless sensor networks[C]// IEEE Global Telecommunications Conference. 2007: 986-990.
[32]	LEE T H . Simple dynamic user authentication protocols for wire-less sensor networks[C]// IEEE Second International Conference on Sensor Technologies and Applications. 2008: 657-660.
[33]	KIANI F , DALKILIC G . Password renewal enhancement for dy-namic authentication in wireless sensor networks[C]// IEEE Second International Conference on Computational Intelligence, Commu-nication Systems and Networks. 2010: 143-146.
[34]	KO L C . A novel dynamic user authentication scheme for wireless sensor networks[C]// IEEE International Symposium on Wireless Communication Systems. 2008: 608-612.
[35]	VAIDYA B , Sá SILVA J , RODRIGUES J J P C . Robust dynamic user authentication scheme for wireless sensor networks[C]// The 5th ACM Symposium on QoS and Security for Wireless and Mo-bile Networks. 2009: 88-91.
[36]	FAYE Y , NIANG I , GUYENNET H . A user authentication-based probabilistic risk approach for wireless sensor networks[C]// IEEE International Conference on Selected Topics in Mobile and Wire-less Networking. 2012: 124-129.
[37]	DAS M L . Two-factor user authentication in wireless sensor net-works[J]. IEEE Transactions on Wireless Communications, 2009, 8 (3): 1086-1090.
[38]	NYANG D H , LEE M K . Improvement of Das's two-factor authen-tication protocol in wireless sensor networks[J]. IACR Cryptology ePrint Archive, 2009, 631-635.
[39]	HUANG H F , CHANG Y F , LIU C H . Enhancement of two-factor user authentication in wireless sensor networks[C]// IEEE 6th In-ternational Conference on Intelligent Information Hiding and Mul-timedia Signal Processing. 2010: 27-30.
[40]	CHEN T H , SHIH W K . A robust mutual authentication protocol for wireless sensor networks[J]. Etri Journal. 2010, 32 (5): 704-712.
[41]	KHAN M K , ALGHATHBAR K . Cryptanalysis and security im-provements of two-factor user authentication in wireless sensor networks[J]. Sensors, 2010, 10 (3): 2450-2459.
[42]	VAIDYA B , MAKRAKIS D , MOUFTAH H T . Improved two-factor user authentication in wireless sensor networks[C]// IEEE 6th International Conference on Wireless and Mobile Com-puting, Networking and Communications. 2010: 600-606.
[43]	HE D , GAO Y , CHAN S , et al. An enhanced two-factor user au-thentication scheme in wireless sensor networks[J]. Ad Hoc＆Sensor Wireless Networks, 2010, 10 (4): 361-371.
[44]	KUMAR P , LEE H J , Cryptanalysis on two user authentication protocols using smart card for wireless sensor networks[C]// IEEE Wireless Advanced. 2011: 241-245.
[45]	TAN Z , Cryptanalyses of a two-factor user authentication scheme in wireless sensor networks[J]. Advances in Information Sciences and Service Sciences, 2011, 3 (4): 117-126.
[46]	FAN R , HE D , PAN X . An efficient and DoS-resistant user authen-tication scheme for two-tiered wireless sensor networks[J]. Journal of Zhejiang University Science C, 2011, 12 (7): 550-560.
[47]	QAZI F A . A Survey of Biometric Authentication Systems[C]// The International Conference on Security and Management. 2004: 61-67.
[48]	LEE J K , RYU S R , YOO K Y . Fingerprint-based remote user authentication scheme using smart cards[J]. Electronics Letters, 2002, 38 (12): 554-555.
[49]	LI C T , HWANG M S . An efficient biometrics-based remote user authentication scheme using smart cards[J]. Journal of Network and Computer Applications, 2010, 33 (1): 1-5.
[50]	LEE C C , CHANG R X , CHEN L A . Improvement of li-hwang's biometrics-based remote user authentication scheme using smart cards[J]. WSEAS Transactions on Communications, 2011, 10 (7): 193-200.
[51]	DAS A K . Analysis and improvement on an efficient biomet-ric-based remote user authentication scheme using smart cards[J]. IET Information Security, 2011, 5 (3): 145-151.
[52]	SEKHAR V C , SARVABHATLA M . A robust biometric-based three-factor remote user authentication scheme[J]. Eprint Arxiv, 2014.
	AN Y . Security analysis and enhancements of an effective biomet-ric-based remote user authentication scheme using smart cards[J]. Biomed Research International, 2012 (4): 23-29.
[54]	CHATURVEDI A , MISHRA D , MUKHOPADHYAY S , Improved biometric-based three-factor remote user authentication scheme with key agreement using smart card[M]. Information Systems Se-curity. Berlin Heidelberg: Springer, 2013: 63-77.
[55]	YUAN J , JIANG C , JIANG Z , A biometric-based user authentica-tion for wireless sensor networks[J]. Wuhan University Journal ofNatural Sciences, 2010, 15 (3): 272-276.
[56]	YOON E J , YOO K Y . A new biometric-based user authentication scheme without using password for wireless sensor net-works[C]// The 20th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprise. 2011: 279-284.

无线传感器网络用户认证协议研究进展

Survey on user authentication protocol in wireless sensor network

在线阅读

pdf下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 5

参考文献 56

相关文章 14

Metrics

推荐阅读 0

[1]	陈晋音, 李荣昌, 黄国瀚, 刘涛, 郑海斌, 程瑶. 纵向联邦学习方法及其隐私和安全综述[J]. 网络与信息安全学报, 2023, 9(2): 1-20.
[2]	梅佳蒙, 任延珍, 王丽娜. 安全性可控的生成式文本隐写算法[J]. 网络与信息安全学报, 2022, 8(3): 53-65.
[3]	蔡振华,林嘉韵,刘芳. 区块链存储：技术与挑战[J]. 网络与信息安全学报, 2020, 6(5): 11-20.
[4]	孟博,刘加兵,刘琴,王潇潇,郑旭睿,王德军. 智能合约安全综述[J]. 网络与信息安全学报, 2020, 6(3): 1-13.
[5]	王众,韩益亮. 密文长度可变的Simple Matrix加密方案[J]. 网络与信息安全学报, 2018, 4(4): 56-62.
[6]	任彦冰. 整数分解与RSA的安全性[J]. 网络与信息安全学报, 2017, 3(5): 62-69.
[7]	林昊,康绯,光焱. 基于动态二进制插桩的密钥安全性检测[J]. 网络与信息安全学报, 2017, 3(11): 50-58.
[8]	黄仁季,叶清,吴倩. 无线传感器网络节点位置隐私保护研究[J]. 网络与信息安全学报, 2017, 3(11): 59-67.
[9]	王康,刘琲贝,刘烁炜,胡永健. 简洁的JPEG图像隐写DCT系数选择方案和安全性增强策略[J]. 网络与信息安全学报, 2016, 2(9): 57-64.
[10]	范敏,蒋珏,汤琳,仇莫然,李超. 基于LEACH协议的WSN共享密钥管理方案的研究[J]. 网络与信息安全学报, 2016, 2(8): 32-38.
[11]	张彩娟,游林. 基于双线性对的多重数字签名方案[J]. 网络与信息安全学报, 2016, 2(6): 66-70.
[12]	陈勇,鲁龙,曾晟珂,何明星. 适用于多方协议的可否认认证[J]. 网络与信息安全学报, 2016, 2(6): 71-81.
[13]	林素青. 支持策略更新的外包属性加密[J]. 网络与信息安全学报, 2016, 2(5): 39-49.
[14]	周从华,陈伟鹤,刘志锋. 基于PAT的使用控制模型的形式化规约与安全性分析[J]. 网络与信息安全学报, 2016, 2(3): 52-67.