面向工业互联网可信访问的轻量级跨域认证协议

IF 4.1 4区计算机科学 Q2 COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE

International Journal on Semantic Web and Information Systems Pub Date : 2023-11-08 DOI:10.4018/ijswis.333481

Tiantian Zhang, Zhiyong Zhang, Kejing Zhao, Brij B. Gupta, Varsha Arya

{"title":"面向工业互联网可信访问的轻量级跨域认证协议","authors":"Tiantian Zhang, Zhiyong Zhang, Kejing Zhao, Brij B. Gupta, Varsha Arya","doi":"10.4018/ijswis.333481","DOIUrl":null,"url":null,"abstract":"This paper proposes a hierarchical framework for industrial Internet device authentication and trusted access as well as a mechanism for industrial security state perception, and designs a cross-domain authentication scheme for devices on this basis. The scheme obtains hardware device platform configuration register (PCR) values and platform integrity measure through periodic perception, completes device identity identification and integrity measure verification when device accessing and data transmission requesting, ensures secure and trustworthy access and interoperation of devices, and designs a cross-domain authentication model for trustworthy access of devices and related security protocols. Through the security analysis, this scheme has good anti-attack abilities, and it can effectively protect against common replay attacks, impersonation attacks, and man-in-the-middle attacks.","PeriodicalId":54934,"journal":{"name":"International Journal on Semantic Web and Information Systems","volume":" 4","pages":"0"},"PeriodicalIF":4.1000,"publicationDate":"2023-11-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"A Lightweight Cross-Domain Authentication Protocol for Trusted Access to Industrial Internet\",\"authors\":\"Tiantian Zhang, Zhiyong Zhang, Kejing Zhao, Brij B. Gupta, Varsha Arya\",\"doi\":\"10.4018/ijswis.333481\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper proposes a hierarchical framework for industrial Internet device authentication and trusted access as well as a mechanism for industrial security state perception, and designs a cross-domain authentication scheme for devices on this basis. The scheme obtains hardware device platform configuration register (PCR) values and platform integrity measure through periodic perception, completes device identity identification and integrity measure verification when device accessing and data transmission requesting, ensures secure and trustworthy access and interoperation of devices, and designs a cross-domain authentication model for trustworthy access of devices and related security protocols. Through the security analysis, this scheme has good anti-attack abilities, and it can effectively protect against common replay attacks, impersonation attacks, and man-in-the-middle attacks.\",\"PeriodicalId\":54934,\"journal\":{\"name\":\"International Journal on Semantic Web and Information Systems\",\"volume\":\" 4\",\"pages\":\"0\"},\"PeriodicalIF\":4.1000,\"publicationDate\":\"2023-11-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Journal on Semantic Web and Information Systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.4018/ijswis.333481\",\"RegionNum\":4,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q2\",\"JCRName\":\"COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal on Semantic Web and Information Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4018/ijswis.333481","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE","Score":null,"Total":0}

引用次数: 0

摘要

本文提出了工业互联网设备认证与可信访问的分层框架和工业安全状态感知机制，并在此基础上设计了设备跨域认证方案。该方案通过周期感知获取硬件设备平台配置寄存器(platform configuration register, PCR)值和平台完整性度量，在设备访问和数据传输请求时完成设备身份识别和平台完整性度量验证，确保设备的安全可信访问和互操作，设计了设备可信访问的跨域认证模型和相关安全协议。通过安全性分析，该方案具有良好的抗攻击能力，能够有效防范常见的重放攻击、冒充攻击和中间人攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A Lightweight Cross-Domain Authentication Protocol for Trusted Access to Industrial Internet

This paper proposes a hierarchical framework for industrial Internet device authentication and trusted access as well as a mechanism for industrial security state perception, and designs a cross-domain authentication scheme for devices on this basis. The scheme obtains hardware device platform configuration register (PCR) values and platform integrity measure through periodic perception, completes device identity identification and integrity measure verification when device accessing and data transmission requesting, ensures secure and trustworthy access and interoperation of devices, and designs a cross-domain authentication model for trustworthy access of devices and related security protocols. Through the security analysis, this scheme has good anti-attack abilities, and it can effectively protect against common replay attacks, impersonation attacks, and man-in-the-middle attacks.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

International Journal on Semantic Web and Information Systems 工程技术-计算机：人工智能

CiteScore

6.20

自引率

12.50%

发文量

审稿时长

20 months

期刊介绍： The International Journal on Semantic Web and Information Systems (IJSWIS) promotes a knowledge transfer channel where academics, practitioners, and researchers can discuss, analyze, criticize, synthesize, communicate, elaborate, and simplify the more-than-promising technology of the semantic Web in the context of information systems. The journal aims to establish value-adding knowledge transfer and personal development channels in three distinctive areas: academia, industry, and government.