椭圆曲线加密结合cookie信息的物联网终端安全认证协议

doi:10.11959/j.issn.1000-0801.2016116

Abstract

Abstract:

For the security problem of terminal devices accessing to the network server in internet of things（IoT），an identity authentication protocol was presented based on elliptic curve cryptography（ECC）and cookie information for internet of things terminal.Firstly，the protocol used user identity information，server private key，random number and expiration time of cookie to form a cookie file.Then，it was encrypted with ECC and stored in the smart terminal.In authentication phase，the mutual authentication was achieved by comparing the security parameters calculated by cookie information.Performance analysis shows that it can resist many kinds of attacks and provide high security，low computation and low communication cost，which was suitable for the terminal devices of limited resources in internet of things.

Key words: internet of things, terminal device, identity authentication, elliptic curve cryptography, cookie information

Jie ZHAO,Huarong ZHANG. Security authentication protocol based on elliptic curve cryptography and cookie information for terminal of IoT[J]. Telecommunications Science, 2016, 32(6): 136-142.

Figures/Tables 4

References 15

[1]	吴振强，周彦伟，马建峰 . 物联网安全传输模型[J]. 计算机学报， 2011，34（8）： 1351-1364. WU Z Q ， ZHOU Y W ， MA J F . A security transmission model for internet of things[J]. Chinese Journal of Computers， 2011，34（8）： 1351-1364.
[2]	汪礼臻，张龙军 . 适合物联网环境的混合双向匿名认证协议[J]. 计算机应用研究， 2015，32（1）： 222-225. WANG L Z ， ZHANG L J . Hybrid mutual anonymous authentication protocol for the internet of things environment[J]. Application Research of Computers， 2015，32（1）： 222-225.
[3]	唐雅玲 . 一种基于认证的物联网安全传输机制[J]. 计算机工程， 2014，40（1）： 144-148. TANG Y L ， . A secure transmission mechanism for internet of things based on certification[J]. Computer Engineering， 2014，40（1）： 144-148.
[4]	黄碧翼，陈泽茂，朱婷婷 . 基于椭圆曲线签密协议的无线安全认证协议[J]. 武汉理工大学学报， 2013，35（6）： 145-150. HUANG B Y ， CHEN Z M ， ZHU T T . Wireless security authentication protocol based on elliptic curve signcryption scheme[J]. Journal of Wuhan University of Technology， 2013，35（6）： 145-150.
[5]	ZHAO G ， SI X ， WANG J ，et al. A novel mutual authentication scheme for internet of things[C]// IEEE International Conference on Modelling，Identification and Control（ICMIC），June 26-29，2011，Shanghai，China. New Jersey： IEEE Press， 2011： 563-566.
[6]	LI C T ， . A new password authentication and user anonymity scheme based on elliptic curve cryptography and smart card[J]. Iet Information Security， 2013，7（1）： 3-10.
[7]	SHEN G ， ZHEN Y . Application of elliptic curve cryptography in node authentication of internet of things[C]// 2013 Ninth International Conference on Intelligent Information Hiding and Multimedia Signal Processing，October 16-18，2013，Beijing，China. New Jersey： IEEE Press， 2013： 452-455.
[8]	SHIVRAJ V L ， RAJAN M A ， SINGH M ，et al. One time password authentication scheme based on elliptic curves for internet of things （IoT）[C]// 5th National Symposium on Information Technology：Towards New Smart World（NSITNSW），February 17-19，2015，Riyadh，Kingdom of Saudi Arabia. New Jersey： IEEE Press， 2015： 1-6.
[9]	HE D ， ZEADALLY S . An analysis of RFID authentication schemes for internet of things in healthcare environment using elliptic curve cryptography[J]. Internet of Things Journal IEEE， 2015，2（1）： 72-83.
[10]	冯伟华，刘亚丽 . 基于cookie的统一认证系统的设计与实现[J]. 计算机工程与设计， 2010，31（23）： 4971-4975. FENG W H ， LIU Y L . Design and implementation of unified authentication system on cookie[J]. Computer Engineering and Design， 2010，31（23）： 4971-4975.
[11]	张文芳，王小敏，郭伟，等. 基于椭圆曲线加密体制的高效虚拟企业跨域认证协议[J]. 电子学报， 2014（6）： 1095-1102. ZHANG W F ， WANG X M ， GUO W ，et al. An efficient inter-enterprise authentication scheme for VE based on the elliptic curve cryptosystem[J]. Acta Electrctronica Sinica， 2014（6）： 1095-1102.
[12]	刘柱文，李丽琳 . 新的基于椭圆曲线的三方口令认证密钥协商协议[J]. 计算机应用， 2011，31（10）： 2687-2688. LIU Z W ， LI L L . New three-party password-based authenticated key agreement protocol with elliptic curve[J]. Journal of Computer Applications， 2011，31（10）： 2687-2688.
[13]	BENINI L . Designing next-generation smart sensor hubs for the internet-of-things[C]// 5th IEEE International Workshop on Advances in Sensors and Interfaces（IWASI），June 13-14，2013，Bari，Italy. New Jersey： IEEE Press， 2013： 113
[14]	CHEN P Y ， CHENG S M ， CHEN K C . Information fusion to defend intentional attack in internet of things[J]. Internet of Things Journal IEEE， 2014，1（4）： 337-348.
[15]	冯福伟，李瑛，徐冠宁，等. 基于集群架构的物联网身份认证系统[J]. 计算机应用， 2013，33（1）： 126-129. FENG F W ， LI Y ， XU G N ，et al. IoT authentication system based on cluster architecture[J]. Journal of Computer Applications， 2013，33（1）： 126-129.

Metrics

Recommended 0

No Suggested Reading articles found!

符号	含义
D_i	嵌入式设备
S	云服务器
ID_i	设备D_i的身份
P_i	设备D_i的密码
R_i	服务器生成的随机数
N₁、N₂	ECC参数生成的随机数
H（）	单向散列函数
X	基于ECC的服务器的私钥
Z_P	有限域组
p	阶＞2¹⁶⁰的大素数
G	大阶数n的生成点
CK	cookie信息
EXP_TIME	cookie的有效时间
\|	级联运算
⊕	异或运算

功能	参考文献[5]	参考文献[6]	参考文献[7]	参考文献[8]	参考文献[9]	本文协议
双向认证	否	是	是	是	是	是
密钥协商	否	否	是	否	是	是
无需时钟同步	是	是	否	是	是	是
匿名性	是	是	否	否	是	是
前向安全性	是	是	是	是	是	是
重放攻击	否	否	是	是	是	是
中间人攻击	是	是	是	否	否	是
cookie盗窃攻击	-	-	-	-	-	是
窃听攻击	是	否	是	是	是	是
离线字典攻击	否	是	否	是	否	是

成本	参考文献[5]	参考文献[6]	参考文献[7]	参考文献[8]	参考文献[9]	本文协议
计算成本（服务器）	4T_H+8T_ECM+2T_ECA	3T_H+6T_ECM+2T_ECA	7T_H+14T_ECM	1T_E+4T_ECM+2T_ECA	8T_ECM+5T_ECA	7T_H+6T_ECM
计算成本（设备）	5T_ECM+2T_ECA	3T_ECM+2T_ECA	3T_H+2T_E+8T_ECM	1T_E+3T_ECM+3T_ECA	4T_ECM+2T_ECA	3T_H+3T_ECM
通信成本/bit	1 280	1 216	1 280	1 280	1 680	1 280
内存成本/bit	352	224	448	256	652	224

Security authentication protocol based on elliptic curve cryptography and cookie information for terminal of IoT

RichHTML

PDF下载

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 4

References 15

Related Articles 15

Metrics

Recommended 0

[1]	Shu DU, Mei MA, Bo ZHAO, Qi ZENG, Xing LIU. Low-hit frequency-hopping communication systems for power Internet of things random access [J]. Telecommunications Science, 2023, 39(1): 117-125.
[2]	Hongyuan MA, Wei ZHOU, Yan FU, Yongping SHAO, Dan LI. Discussion on the evolution of architecture of the core network of cellular Internet of things [J]. Telecommunications Science, 2023, 39(1): 153-161.
[3]	Zhen YANG, Jianjun ZHAO, Yongjun HUANG, Jie LI, Nan CHEN. Study on the direction of artificial intelligence technology based on network evolution [J]. Telecommunications Science, 2022, 38(12): 27-34.
[4]	Cheng DING, Jinrong CHEN, Xiaodong CAO, Yi WANG. Quality of service based hierarchical resource allocation algorithm [J]. Telecommunications Science, 2022, 38(1): 102-111.
[5]	Fengzhong QU, Hangliang LAI, Jianzhang LIU, Xingbin TU, Yuan JIANG. Research and application on key techniques of marine IoT [J]. Telecommunications Science, 2021, 37(7): 25-33.
[6]	Zhenhua FU, Jie LI, Fei JI, Hua YU. Architecture of a heterogeneous marine internet of things for intelligent offshore engineering [J]. Telecommunications Science, 2021, 37(7): 34-39.
[7]	Longgang ZHAO, Hansheng LIU, Feng WANG, Shuang DI. IoT business guarantee method based on behavioral portrait [J]. Telecommunications Science, 2021, 37(5): 52-63.
[8]	Jinfeng XIE, Hanqi YAN, Bingguang DENG, Yan ZHANG. Development research of terminal evaluation system of internet of things [J]. Telecommunications Science, 2021, 37(2): 63-70.
[9]	Yiying ZHANG, Baoxian ZHOU, Haoyuan PANG, Jinping CAO, Tongjia ZHANG. Electric internet of things security framework and technologies for energy interconnection [J]. Telecommunications Science, 2021, 37(2): 115-124.
[10]	Junfeng MA, Zhiruo LIU, Guanwen LI, Fei YANG, Juanna DANG. A lightweight and trusted communication protocol for IoT [J]. Telecommunications Science, 2021, 37(11): 33-40.
[11]	Wei LIU,Yanli ZHAGN,Jie LIU,Lijuan XING. Application of wireless LoRa in multi-service state grid e-ubiquitous power internet of things [J]. Telecommunications Science, 2020, 36(9): 94-101.
[12]	Shaoliang PENG,Liang BAI,Li WANG,Minxia CHENG,Shulin WANG. Trusted edge computing for smart healthcare [J]. Telecommunications Science, 2020, 36(6): 56-63.
[13]	Yuan CHEN,Tieming CHEN,Qijie SONG,Dongjie MA. IBEXSec:a universal security framework for industrial internet terminal access [J]. Telecommunications Science, 2020, 36(3): 19-26.
[14]	·iping ZUO,Shi JIN,Shengli ZHANG. Research status and development trend of blockchain in cellular mobile communication system [J]. Telecommunications Science, 2019, 35(9): 114-123.
[15]	Wenjun LV,Jian YU,Hongbo ZHU. Research progress of the antenna technology for internet of things [J]. Telecommunications Science, 2019, 35(7): 124-135.