Research On Identity Authentication And Session Key Establishment Protocol In Internet Of Vehicles

The Internet of Vehicles has received much attention for its ability to improve road safety and traffic management.However,due to insecure wireless communication channels,the Internet of Vehicles faces security threats such as eavesdropping,tampering,and forgery.In order to protect the security and privacy of vehicle communication,this thesis starts from the perspective of identity authentication and session key establishment in the Internet of Vehicles.A secure authenticated key agreement protocol in the extended Canetti-Krawczyk(e CK)model and a forgery-resistant certificateless aggregate signature scheme are proposed.The main research of this thesis is as follows:(1)An e CK-Secure authentication key agreement protocol supporting dynamic join and revocation for the Internet of Vehicles is proposed.The protocol uses NAXOS technique to implement the semantic security of session keys under the e CK model,and enables dynamic management of the joining and revocation of vehicles and roadside units in the Internet of Vehicles based on the Chinese remainder theorem.The protocol solves the problems of existing partial authentication key agreement protocols that have high computational overhead,do not support dynamic joining and revocation of vehicles after initial deployment,and cannot support vehicle-to-vehicle authentication key agreement,and can trace the true identity of vehicles when necessary.Formal security analysis and performance analysis show that the protocol is secure under the e CK model,and has lower computation and communication overhead compared with similar schemes.(2)A forgery-resistant certificateless aggregate signature scheme is proposed.The scheme uses hash function to bind related information to achieve resistance to public key subtraction attack,and further reduces the computation and communication overhead by merging partial public keys.The security reduction after decoupling the single signature scheme and the aggregate signature scheme proves that the proposed scheme can resist attacks from two types of adversaries and exchange collusion,simple sum forgery and an attack method that uses the k-sum algorithm to forge signatures.The proposed scheme solves the cumbersome certificate maintenance problem of PKI-based schemes and the key escrow problem of identity-based schemes,and has certain advantages in computational efficiency and communication overhead.(3)Designed and implemented an infotainment system based on the React Native framework for the Internet of Vehicles scenarios.The above certificateless aggregate signature scheme is used to achieve two-way authentication between the cloud service provider and the vehicle,ensuring the security of the infotainment system.After registration,the vehicle can interact with the cloud service provider to obtain infotainment related services and improve the driving experience.