通信学报 ›› 2023, Vol. 44 ›› Issue (5): 213-223.doi: 10.11959/j.issn.1000-436x.2023080

• 学术通信 • 上一篇    下一篇

基于双层分片区块链的车联网跨信任域高效认证方案

刘雪娇1, 钟强1, 夏莹杰2   

  1. 1 杭州师范大学信息科学与技术学院,浙江 杭州 311121
    2 浙江大学计算机科学与技术学院,浙江 杭州 310027
  • 修回日期:2023-03-21 出版日期:2023-05-25 发布日期:2023-05-01
  • 作者简介:刘雪娇(1984- ),女,河南安阳人,博士,杭州师范大学副教授、硕士生导师,主要研究方向为网络安全、云安全、车联网安全等
    钟强(1998- ),男,江西赣州人,杭州师范大学硕士生,主要研究方向为网络安全、区块链和车联网安全认证
    夏莹杰(1982- ),男,浙江宁波人,博士,浙江大学特聘研究员,主要研究方向为智能交通、信息安全等
  • 基金资助:
    浙江省自然科学基金资助项目(LZ22F030004);浙江省电子信息产品检验研究院(浙江省信息安全重点实验室)(KF202303)

Efficient authentication scheme for cross-trust domain of IoV based on double-layer shard blockchain

Xuejiao LIU1, Qiang ZHONG1, Yingjie XIA2   

  1. 1 School of Information Science and Technology, Hangzhou Normal University, Hangzhou 311121, China
    2 College of Computer Science and Technology, Zhejiang University, Hangzhou 310027, China
  • Revised:2023-03-21 Online:2023-05-25 Published:2023-05-01
  • Supported by:
    The Natural Science Foundation of Zhejiang Province(LZ22F030004);Zhejiang Electronic Information Products Inspection and Research Institute(Key Laboratory of Information Security of Zhejiang Province)(KF202303)

摘要:

为解决车联网跨信任域消息认证中拓展性差、认证信息同步慢和认证开销大的问题,提出了基于双层分片区块链的车联网跨信任域高效认证方案。设计了一种面向大量跨信任域消息认证的双层分片区块链架构,通过在全域不同实体层级上构建区块链,提升系统的拓展性,确保跨域信息安全高效的共享;提出了一种基于 Metis图划分算法的车联网区块链分片方法,通过均衡各分片的负载,适应车联网中各路段认证信息不均的情形,提高大量认证信息上链同步的效率;提出了基于无证书公钥密码的跨域批量认证方案,实现对不同信任域消息的批量认证,降低了跨域消息的认证开销。实验表明,所提方案有效地提升了跨信任域消息的认证效率,相比于其他方案,在大量跨域消息认证上降低了26.4%以上的计算开销。

关键词: 车联网, 批量认证, 跨信任域, 分片区块链, 高效

Abstract:

To solve the problems of poor scalability, slow synchronization of authentication information, and high authentication overhead in cross-trust domain message authentication in the Internet of vehicles (IoV), an efficient authentication scheme for cross-trust domain of IoV based on a double-layer shard blockchain was proposed.A double-layer shard blockchain architecture was designed for lots of cross-trust domain message authentication by constructing blockchains on different entity levels in all domains to improve the scalability of the system and ensure secure and efficient sharing of cross-domain information.A blockchain sharding method based on the Metis graph partitioning algorithm for IoV was proposed to balance loads of each shard and adapt to the uneven distribution of authentication information on different road segments in IoV, thereby improving the efficiency of synchronizing a large number of authentication information on the chain.A batch authentication scheme based on certificateless public-key cryptography (CL-PKC) was proposed, which reduced the authentication overhead of cross-domain messages by enabling batch authentication of messages from different trust domains.Experimental results show that the proposed scheme effectively improves the authentication efficiency of cross-trust domain messages.Compared with other schemes, the proposed scheme reduces the computational overhead of a large number of cross-domain message authentication by more than 26.4%.

Key words: Internet of vehicles, batch authentication, cross-trust domain, shard blockchain, efficient

中图分类号: 

No Suggested Reading articles found!