无线传感器网络的轻量级安全体系研究

doi:1000-436X(2012)02-0030-06

通信学报 ›› 2012, Vol. 33 ›› Issue (2): 30-35.doi: 1000-436X(2012)02-0030-06

无线传感器网络的轻量级安全体系研究

王潮^1,²,胡广跃¹,张焕国^2,³

¹ 上海大学特种光纤与光接入网省部共建重点实验室，上海200072
² 空天信息安全与可信计算教育部重点实验室，湖北武汉430072
³ 武汉大学计算机学院，湖北武汉430072

出版日期:2012-02-25 发布日期:2017-08-04
基金资助:
国家自然科学基金资助项目;国家自然科学基金资助项目;国家自然科学基金资助项目;空天信息安全与可信计算教育部重点实验室开放基金资助项目;上海市重点学科和科委重点实验室基金资助项目;上海市重点学科和科委重点实验室基金资助项目

Lightweight security architecture design for wireless sensor network

Chao WANG^1,²,Guang-yue HU¹,Huan-guo ZHANG^2,³

¹ Shanghai University Key Lab of Specialty Fiber Optics and Optical Access Network,Shanghai 200072,China
² Key Laboratory of Aerospace Information Security and Trusted Computing Ministry of Education,Wuhan 430072,China
³ Computer School of Wuhan University,Wuhan 430072,China

Online:2012-02-25 Published:2017-08-04
Supported by:
The National Natural Science Foundation of China;The National Natural Science Foundation of China;The National Natural Science Foundation of China;The Key Laboratory Open Fund of Sky Information Security and Trusted Computing;Shanghai Key Subject and Committee of Science and Technology of Key Laboratory;Shanghai Key Subject and Committee of Science and Technology of Key Laboratory

摘要/Abstract

摘要：

结合无线传感器网络现有的安全方案存在密钥管理和安全认证效率低等问题的特点，提出了无线传感器网络的轻量级安全体系和安全算法。采用门限秘密共享机制的思想解决了无线传感器网络组网中遭遇恶意节点的问题；采用轻量化ECC算法改造传统ECC算法，优化基于ECC的CPK体制的思想，在无需第三方认证中心CA的参与下，可减少认证过程中的计算开销和通信开销，密钥管理适应无线传感器网络的资源受限和传输能耗相当于计算能耗千倍等特点，安全性依赖于椭圆离散对数的指数级分解计算复杂度；并采用双向认证的方式改造，保证普通节点与簇头节点间的通信安全，抵御中间人攻击。

关键词: 无线传感器网络, 认证, 密钥管理, 轻量级ECC

Abstract:

Most previous security proposal did not consider key management or their authentication efficiency was very low.Lightweight security architecture and lightweight security algorithm were proposed for wireless sensor network,The problem of network encounters malicious nodes maybe occur in the procedure of backbone networks networking could be solved by threshold secret sharing mechanism.The lightweight ECC was proposed to optimize the CPK architecture based on normal ECC,authentication was efficient without the third-party CA,and could reduce the computational complexity,the key management could meet the resource limit in wireless sensor network,and the key security depended on the exponential computation complexity of the elliptic discrete logarithm decomposition.The scheme used the improved two-way authentication to ensure the communication security between common node and sink node,which could prevent man-in-the-middle attack.

Key words: wireless sensor network, authentication, key management, lightweight ECC

王潮,胡广跃,张焕国. 无线传感器网络的轻量级安全体系研究[J]. 通信学报, 2012, 33(2): 30-35.

Chao WANG,Guang-yue HU,Huan-guo ZHANG. Lightweight security architecture design for wireless sensor network[J]. Journal on Communications, 2012, 33(2): 30-35.

图/表 1

表1

计算复杂度对比"

方案	计算复杂度
K.Okeya和
K.Sakurai的方案^[10]	49M+12S+2I
Y.Futa和M.Ohmori
的方案^[11]	(n﹣53/18)(4M+2S)
刘铎等的方案^[12]	3I﹢(13.875n﹢30.25)M﹢(9.25n﹢2.5)S
本文方案	$(6 \| d \| - 3) M + (4 \| d \| - 2) S$

表1

参考文献 12

[1]	GERLAM . Ad Hoc Networks:Technologies and Protocols[M]. Springer Science Press, 2004.
[2]	王潮，张振华，应仲平 . 王潮，张振华，应仲平．WSN中基于身份的分散密钥管理研究[A]. 第六届中国测试学术会议论文集[C]. 2010. WANGC , ZHANGZ H , YINGZ P . Research on distributed key management based on identity in wireless sensor networks[A]. CTC2010[C]. 2010.
[3]	IBRIQJ , MAHGOUBI . A hierarchical key establishment scheme for wireless sensor networks[C]. AINA'07[C]. Niagara Falls,Canada, 2007. 210-219.
[4]	FANTACCIR , CHITIF , MACCARIL . Fast distributed bi-directional authentication for wireless sensor networks[J]. Security and Communication Networks, 2008,1(1): 17-24.
[5]	HANK , SHONT , KIMK . Efficient mobile sensor authentication in smart home and WPAN[J]. IEEE Transactions on Consumer Electronics, 2010,56(2): 591-596.
[6]	HANK , KIMK , SHONT . Untraceable mobile node authentication in WSN[J]. Sensors, 2010,10(5): 4410-4429.
[8]	南湘浩 . 组合公钥(CPK)体制标准(v5.0)[J]. 计算机安全， 2010,(10):1-2. NANX H . CPK-cryptosystem standard (v5.0)[J]. Computer security, 2010,(10):1-2.
	王潮，朱美丽，时向勇 . 基于ECC的CBTC无线接入安全认证架构研究[J]. 哈尔滨工业大学学报（增刊）, 2009,41(1):193-197. WANGC , ZHUM L , SHIX Y . Research of structure of secure authentication based on ECC for wireless CBTC[J]. Harbin Journal of Harbin Institute of Technology, 2009,41(1):193-197.
[9]	王潮，时向勇，牛志华 . 基于Montgomery 曲线改进ECDSA算法的研究[J]. 通信学报， 2010,31(1):9-13. WANGC , SHIX Y , NIVZ H . The research of the promotion for ECDSA algorithm based on Montgomery-form ECC[J]. Journal on Communications, 2010,31(1):9-13.
[10]	OKEYAK , SAKURAIK . A scalar multiplication algorithm with recovery of y-coordinate on the Montgomery form and analysis of efficiency for elliptic curve cryptosystem[J]. IEICE Trans Fundamental, 2002,85(1): 84-93.
[11]	FUTAY , OHMORIM . Efficient scalar multiplication on Montgomery-form elliptic curves[J]. IEICE Transactions on Fundamentals of Electronics,Communications and Computer Sciences, 2004,87(8): 2126-2136.
[12]	LIUD , DAIY Q . The algorithm of computing kP+mQ+lR on a Montgomery-form elliptic curve[A]. Chinese National Conference of Computer 2003[C]. Beijing: Tsinghua University Press, 2003. 198-203.

[1]	张海波, 兰凯, 陈舟, 王汝言, 邹灿, 王明月. 车联网中基于环的匿名高效批量认证与组密钥协商协议[J]. 通信学报, 2023, 44(6): 103-116.
[2]	刘雪娇, 钟强, 夏莹杰. 基于双层分片区块链的车联网跨信任域高效认证方案[J]. 通信学报, 2023, 44(5): 213-223.
[3]	夏莹杰, 朱思雨, 刘雪娇. 区块链架构下具有条件隐私的车辆编队跨信任域高效群组认证研究[J]. 通信学报, 2023, 44(4): 111-123.
[4]	李玮, 刘春, 谷大武, 孙文倩, 高建宁, 秦梦洋. Saturnin-Short轻量级认证加密算法的统计无效故障分析[J]. 通信学报, 2023, 44(4): 167-175.
[5]	王圣宝, 周鑫, 文康, 翁柏森. 适用于智能电网的三方认证密钥交换协议[J]. 通信学报, 2023, 44(2): 210-218.
[6]	赵越, 李赞, 李冰, 郝本建. TDoA定位盲区分析与节点部署策略研究[J]. 通信学报, 2023, 44(1): 1-13.
[7]	金伟, 李凤华, 余铭洁, 郭云川, 周紫妍, 房梁. 面向HDFS的密钥资源控制机制[J]. 通信学报, 2022, 43(9): 27-41.
[8]	田有亮, 田茂清, 高鸿峰, 何淼, 熊金波. 面向群智感知应用的基于协作的位置认证方案[J]. 通信学报, 2022, 43(9): 121-133.
[9]	冯霞, 崔凯平, 谢晴晴, 王良民. VANET中基于区块链的分布式匿名认证方案[J]. 通信学报, 2022, 43(9): 134-147.
[10]	王振宇, 郭阳, 李少青, 侯申, 邓丁. 面向轻量级物联网设备的高效匿名身份认证协议设计[J]. 通信学报, 2022, 43(7): 49-61.
[11]	李翠然, 王雪洁, 谢健骊, 吕安琪. 基于改进PSO的铁路监测线性无线传感器网络路由算法[J]. 通信学报, 2022, 43(5): 155-165.
[12]	廉欢欢, 侯慧莹, 赵运磊. 后量子基于验证元的三方口令认证密钥交换协议[J]. 通信学报, 2022, 43(4): 95-106.
[13]	张应辉, 胡凌云, 李艺昕, 宁建廷, 郑东. 空间信息网络中基于动态撤销机制的安全高效批量认证方案[J]. 通信学报, 2022, 43(4): 164-176.
[14]	尹安琪, 郭渊博, 汪定, 曲彤洲, 陈琳. 可证明安全的抗量子两服务器口令认证密钥交换协议[J]. 通信学报, 2022, 43(3): 14-29.
[15]	郭渊博, 尹安琪. 基于格的口令认证密钥交换协议综述[J]. 通信学报, 2022, 43(12): 172-187.

无线传感器网络的轻量级安全体系研究

Lightweight security architecture design for wireless sensor network

在线阅读

PDF下载

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 1

参考文献 12

相关文章 15

Metrics

推荐阅读 0