| 基于匿名代理签名的LTE-R车-地无线通信安全认证方案 |
| |
| 引用本文: | 王宇,张文芳,王小敏,蔺伟,高尚勇,吴文丰.基于匿名代理签名的LTE-R车-地无线通信安全认证方案[J].铁道学报,2020(3):76-84. |
| |
| 作者姓名: | 王宇 张文芳 王小敏 蔺伟 高尚勇 吴文丰 |
| |
| 作者单位: | 西南交通大学信息科学与技术学院;国家铁路智能运输系统工程技术研究中心 |
| |
| 基金项目: | 国家自然科学基金(61872302);四川省科技计划项目(2018GZ0195,2019YFH0097,2019YFG0502);国家铁路智能运输系统工程技术研究中心开放课题(RITS2018KF02)。 |
| |
| 摘 要: | 针对铁路下一代移动通信系统LTE-R的车地无线通信实体认证安全漏洞及认证效率问题,提出了基于匿名代理签名的车-地无线通信安全认证方案。该方案针对3种认证场景分别设计了注册认证协议、初始认证协议和重认证协议,通过引入匿名代理签名机制,实现了IMSI的机密性保护和MME的预认证功能,可抵抗中间人攻击、重放攻击和拒绝服务攻击。此外,本方案实现了认证信息的本地生成,有效提高了高速移动环境下频繁重认证的计算和通信效率,避免了认证向量耗尽而重启初始认证协议的问题。性能分析表明,本方案能够满足LTE-R系统车地认证对安全性和实时性的实际需求。
|
| 关 键 词: | LTE-R EPS-AKA 认证 匿名代理签名 IMSI保护 |
A Train-ground Security Authentication Scheme Based on Anonymous Proxy Signature for LTE-R System |
| |
| WANG Yu,ZHANG Wenfang,WANG Xiaomin,LIN Wei,GAO Shangyong,WU Wenfeng.A Train-ground Security Authentication Scheme Based on Anonymous Proxy Signature for LTE-R System[J].Journal of the China railway Society,2020(3):76-84. |
| |
| Authors: | WANG Yu ZHANG Wenfang WANG Xiaomin LIN Wei GAO Shangyong WU Wenfeng |
| |
| Institution: | (School of Information Science and Technology,Southwest Jiaotong University,Chengdu 610031,China;The Center of National Railway Intelligent Transportation System Engineering and Technology,China Academy of Railway Science Corparation Limited,Beijing 100081,China) |
| |
| Abstract: | In the view of the security loopholes and authentication efficiency of train-ground wireless communication entity authentication in the next generation railway mobile communication system LTE-R,a security authentication scheme for vehicle-ground wireless communication based on anonymous proxy signature algorithm was proposed in this paper.This proposal introduced registration authentication,initialization authentication and re-authentication for a series of scenarios.This scheme can provide IMSI protection,mobile management entity pre-authentication,undeniable feature,and DoS resistant ability with the benefit of anonymous proxy signature.Along with that,the authentication information was generated locally to reduce the computational and communicational cost of re-authentication.The results of the analysis on the security and performance show that this scheme ensures the security of railway communications and the timeliness of authentication during the rapid movement process of trains. |
| |
| Keywords: | LTE-R EPS-AKA authentication anonymous proxy signature protection of IMSI |
| 本文献已被 CNKI 维普 等数据库收录! |
|
