基于区块链的密钥更新和可信定位系统

doi:10.13868/j.cnki.jcr.000216

摘要
图/表
参考文献(15)
相关文章 (15)

全文: PDF (1140 KB) HTML (1 KB)
输出: BibTeX | EndNote (RIS)

摘要

随着物联网技术发展, 智能设备数量激增, 无线智能物联网设备采用的自组织网络模式具有拓扑动态性、无中心分布性、无固定基础设施等特点, 然而这些特点为通信与定位的安全性带来众多问题. 首先, 为实现无线智能设备的安全通信, 往往采用单双钥加密相结合的方式, 然而一旦设备密钥丢失或泄露, 其密钥更新难以在自组织网络中及时同步; 其次, 在自组织网络中, 多设备之间会话密钥的协商往往需要复杂的交互和运算; 第三, 在城市、野外等复杂环境下, 采用自组织网络模式的智能设备难以接收来自外部足够强的定位信号, 而现有的APS定位算法在缺乏基站等可信第三方基础设施情况下难以确保其定位安全性; 最后, 现有定位算法难以确保无线智能物联网设备所获得的定位信号未遭篡改, 也难以保证网络监控下各移动设备所显示定位的真实性. 针对上述问题, 本系统将无线智能物联网设备之间建立的区块链作为可信基础设施, 记录用户身份对应的密钥更新链, 并便于多用户间会话密钥协商; 基于共识机制实现在无定位信号或弱定位信号下物联网智能设备之间可信相互定位, 并保障设备获取和发出的定位信息真实. 本系统可使用现有安全的密码算法构建, 能够高效安全地实现密钥更新与可信定位, 适宜在实际物联网设备安全通信系统中使用.

	服务

	把本文推荐给朋友
	加入我的书架
	加入引用管理器
	E-mail Alert
	RSS
	作者相关文章
	李大伟
	刘建伟
	关振宇
	秦煜瑶
	伍前红

关键词 ：区块链, 密钥更新, 密钥协商, 可信定位, 自组网, 物联网

Abstract：

With the development Internet of Things (IoT), the number of intelligent devices is increasing rapidly. The ad hoc network mode of wireless intelligent devices has dynamic topology and decentralized distribution and does not have a fixed infrastructure. However, these features bring many problems to the security of communication and positioning. Firstly, the combination of symmetric and asymmetric encryption schemes is applied to achieve secure communications between IoT devices, while once a private key is lost or leaked, it is hard to synchronize the latest keys in the whole ad hoc network. Secondly, complicated interaction and computation are usually needed for key agreement among devices in ad hoc networks. Thirdly, under some circumstances, it can be a great challenge for ad hoc intelligent devices to receive signal from the trusted third party which is also required to be always online, but the existing ad hoc positioning system cannot remain secure when lacking of trusted third party like base station. Finally, the existing positioning algorithm cannot protect positioning signal untampered, and it is difficult to ensure the accuracy of the positioning displayed by each mobile device in the ad hoc network. In view of the above problems, we propose this system by using blockchains established between wireless IoT devices as the trusted infrastructure to record the key update chain corresponding to the user identity and facilitate the session key agreement among multiple users. Based on the consensus mechanism, the system enables trusted mutual positioning among IoT devices when there is no or weak positioning signal, and it protects the authenticity of positioning information sent or received by devices. The system can be built by the existing secure cryptographic algorithms, enabling secure and efficient key updates and trusted positioning, and it is adapted for use in actual devices in secure IoT systems.

Key words： blockchain key update key agreement trusted positioning ad hoc Internet of Things(IOT)

基金资助:

国家重点研发计划(2017YFB1400700); 国家自然科学基金(61672083, 61370190, 61772538, 61532021, 61472429, 61402029, 61702028); 北京市自然科学基金(4182033, 4132056); 十三五国家密码发展基金密码理论课题(MMJJ20170106); 北航金华北斗应用研究院基金(BARI1702)

通讯作者: 伍前红, E-mail: qianhong.wu@buaa.edu.cn

引用本文:

李大伟, 刘建伟, 关振宇, 秦煜瑶, 伍前红. 基于区块链的密钥更新和可信定位系统[J]. 密码学报, 2018, 5(1): 35-42.
LI D W, LIU J W, GUANG Z Y, QIN Y Y, WU Q H. Key Update and Trusted Positioning System Based on Blockchain. Journal of Cryptologic Research, 2018, 5(1): 35-42.

链接本文:

http://www.jcr.cacrnet.org.cn/CN/10.13868/j.cnki.jcr.000216 或 http://www.jcr.cacrnet.org.cn/CN/Y2018/V5/I1/35

\bibitem{1} NAKAMOTO S. Bitcoin: A peer-to-peer electronic cash system[OL]. https://bitcoin.org/bitcoin.pdf, 2008.
\bibitem{2} ASOKAN N, GINZBOORG P. Key agreement in ad hoc networks[J]. Computer Communications, 2000, 23(17): 1627--1637. [DOI: 10.1016/S0140-3664(00)00249-8]
\bibitem{3} CAPKUN S, BUTTYÁN L, HUBAUX J. Self-organized public-key management for mobile ad hoc networks[J]. IEEE Transactions on Mobile Computing, 2003, 2(1): 52--64. [DOI: 10.1109/TMC.2003.1195151]
\bibitem{4} AUGOT D, BHASKAR R, ISSARNY V, et al. An efficient group key agreement protocol for ad hoc networks[C]. In: Proceedings of Sixth International Symposium on a World of Wireless Mobile and Multimedia Networks (WOWMOM 2005). IEEE, 2005: 576--580. [DOI: 10.1109/WOWMOM.2005.26]
\bibitem{5} CHIEN H, LIN R. Identity-based key agreement protocol for mobile ad-hoc networks using bilinear pairing[C]. In: Proceedings of IEEE International Conference on Sensor Networks, Ubiquitous, and Trustworthy Computing (SUTC 2006). IEEE Computer Society, 2006: 520--529. [DOI: 10.1109/SUTC.2006.70]
\bibitem{6} PERVAIZ M O, CARDEI M, WU J. Routing security in ad hoc wireless networks[C]. In: Network Security. Springer, Boston, MA, USA. 2010: 117--142. [DOI: 10.1007/978-0-387-73821-5\underline{~}6]
\bibitem{7} AKBANI R, KORKMAZ T, RAJU G V S. Mobile ad-hoc networks security[C]. In: Recent Advances in Computer Science and Information Engineering. Springer Berlin Heidelberg, 2012: 659--666. [DOI: 10.1007/978-3-642-25769-8\underline{~}92]
\bibitem{8} STULMAN A, STULMAN A. Spraying techniques for securing key exchange in large ad-hoc networks[C]. In: Proceedings of the 11th ACM Symposium on QoS and Security for Wireless and Mobile Networks (Q2SWinet 2015). ACM, 2015: 29--34. [DOI: 10.1145/2815317.2815324]
\bibitem{9} CHATURVEDI A, SRIVASTAVA N, SHUKLA V, et al. A secure zero knowledge authentication protocol for wireless (mobile) ad-hoc networks[J]. International Journal of Computer Applications, 2015, 128(2): 36--39. [DOI: 10.5120/ijca2015906437]
\bibitem{10} BÜTTNER C, HUSS S A. A novel anonymous authenticated key agreement protocol for vehicular ad hoc networks[C]. In: Proceedings of the 1st International Conference on Information Systems Security and Privacy---ICISSP 2015. SciTePress, 2015: 259--269. [DOI: 10.5220/0005238902590269]
\bibitem{11} NICULESCE D, NATH B. Ad hoc positioning system (APS)[C]. In: Proceedings of the Global Telecommunications Conference---GLOBECOM 2001. IEEE, 2001: 2926--2931. [DOI: 10.1109/GLOCOM.2001.965964]
\bibitem{12} GARAY J A, KIAYIAS A, LEONARDOS N. The bitcoin backbone protocol: Analysis and applications[C]. In: Advances in Cryptology---EUROCRYPT 2015, Part II. Springer Berlin Heidelberg, 2015: 281--310. [DOI: 10.1007/978-3-662-46803-6\underline{~}10]
\bibitem{13} ZYSKIND G, NATHAN O, PENTLAND A. Decentralizing privacy: Using blockchain to protect personal data[C]. In: Proceedings of 2015 IEEE Symposium on Security and Privacy Workshops (SPW 2015). IEEE Computer Society, 2015: 180--184. [DOI: 10.1109/SPW.2015.27]
\bibitem{14} KOSBA A E, MILLER A, SHI E, et al. Hawk: The blockchain model of cryptography and privacy-preserving smart contracts[C]. In: Proceedings of IEEE Symposium on Security and Privacy---SP 2016. IEEE Computer Society, 2016: 839--858. [DOI: 10.1109/SP.2016.55]
\bibitem{15} BRAMBILLA G, AMORETTI M, ZANICHELLI F. Using block chain for peer-to-peer proof-of-location[OL]. CoRR: arXiv:1607.00174 [cs.DC]. 2016. http://arxiv.org/abs/1607.00174.