Research On Lightweight Authentication For Internet Of Things

With the rapid development of the Internet of things(Io T)and the advancement of intelligence in various industries,a large number of intelligent devices are connected to the Io T network.However,while carrying out information transmission,smart devices are also facing the risk of network attacks.Identity Authentication serves as the first barrier against network attacks and is the most important means to protect Io T terminals from cyber attacks.This thesis focuses on the problem of identity authentication in the Io T and studies the lightweight identity authentication technology in the Io T scenario.Traditional certificateless identity authentication protocols often use bilinear pairing operations in the signature and verification process,resulting in high computational load and long processing time.In this thesis,a lightweight certificateless identity authentication protocol,Light-CL-PKC,is designed based on the principle of certificateless identity authentication.This protocol eliminates bilinear pairing operations and fully utilizes operations such as point addition and multiplication on elliptic curves to achieve signature generation and verification,reducing computational complexity.Identity authentication and key agreement can be completed in only one round of communication,reducing authentication time.By introducing a timestamp mechanism,the protocol can successfully resist replay attacks.Experimental results show that compared with the protocols mentioned in the reference,Light-CL-PKC not only reduces communication overhead by 32.14%,but also reduces authentication time by more than 27.2%.Aiming at the problem of PKI system applied in Io T,this thesis analyzes the challenge of PKI system in Io T scenario and chooses certificate lightweight as the starting point of PKI lightening.Through a detailed analysis of X.509 certificates,fields such as Version,Signature Algorithum,and so on are qualified to specific values and then omitted from the lightweight certificate Light Cert.In addition,Light Cert is encoded using CBOR encoding instead of ASN.1.In thist Thesis,we compare the size before and after certificate compression.The CBOR-encoded Light Cert is 73.7% smaller than the original certificate.The experimental results show that the energy consumption is reduced when the certificate is compressed and sent,and the energy consumption is the same before and after the certificate compression,and there is no obvious gain,the overall energy consumption is reduced by 5.6m J.In response to the low-security identity authentication methods for Io T devices in smart home scenarios,this thesis combines the Light-CL-PKC protocol and lightweight PKI designed above to develop an Io T identity authentication system for smart home scenarios.The system consists of three parts: smart terminals,edge gateways,and cloud platforms.This identity authentication system achieves identity authentication between gateways and terminal devices,as well as data interconnection and communication between terminal devices,gateways,and cloud platforms.The cloud platform collects and presents data from terminal devices and issues instructions through the gateway.This thesis completes the corresponding system design,program code development,and overall verification.