{"title":"工业物联网中区块链辅助的灵活可撤销匿名认证","authors":"Fengqun Wang;Jie Cui;Qingyang Zhang;Debiao He;Hong Zhong","doi":"10.1109/TNSE.2024.3503996","DOIUrl":null,"url":null,"abstract":"In Industrial Internet of Things (IIoT) systems, data sharing between industrial departments is often utilized to optimize management models and improve decision-making efficiency. To enable secure data sharing, authentication between smart devices is critical. However, existing authentication schemes do not comprehensively consider data anonymity, data traceability, pseudonym management, and flexible revocation of devices, which cannot meet the needs of IIoT systems for security, real-time, and dynamicity. Therefore, we propose a blockchain-assisted lightweight authentication scheme. First, we design a lightweight authentication method based on Okamoto's protocol and elliptic curve cryptography, which achieves fast authentication of smart devices while ensuring data anonymity and traceability. Second, we design a two-level key derivation algorithm and combine it with blockchain technology to address the issue of pseudonym management. Smart devices can generate pseudonyms without requesting them from the key generation center and can be revoked flexibly. Third, security proof and analysis demonstrate that the proposed scheme achieves the security objectives and is resistant to various common attacks. Finally, the performance evaluation results show that our proposed scheme performs better than the other related schemes regarding computational and communication overheads.","PeriodicalId":54229,"journal":{"name":"IEEE Transactions on Network Science and Engineering","volume":"12 1","pages":"518-532"},"PeriodicalIF":6.7000,"publicationDate":"2024-11-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Blockchain-Assisted Flexible Revocable Anonymous Authentication in Industrial Internet of Things\",\"authors\":\"Fengqun Wang;Jie Cui;Qingyang Zhang;Debiao He;Hong Zhong\",\"doi\":\"10.1109/TNSE.2024.3503996\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In Industrial Internet of Things (IIoT) systems, data sharing between industrial departments is often utilized to optimize management models and improve decision-making efficiency. To enable secure data sharing, authentication between smart devices is critical. However, existing authentication schemes do not comprehensively consider data anonymity, data traceability, pseudonym management, and flexible revocation of devices, which cannot meet the needs of IIoT systems for security, real-time, and dynamicity. Therefore, we propose a blockchain-assisted lightweight authentication scheme. First, we design a lightweight authentication method based on Okamoto's protocol and elliptic curve cryptography, which achieves fast authentication of smart devices while ensuring data anonymity and traceability. Second, we design a two-level key derivation algorithm and combine it with blockchain technology to address the issue of pseudonym management. Smart devices can generate pseudonyms without requesting them from the key generation center and can be revoked flexibly. Third, security proof and analysis demonstrate that the proposed scheme achieves the security objectives and is resistant to various common attacks. Finally, the performance evaluation results show that our proposed scheme performs better than the other related schemes regarding computational and communication overheads.\",\"PeriodicalId\":54229,\"journal\":{\"name\":\"IEEE Transactions on Network Science and Engineering\",\"volume\":\"12 1\",\"pages\":\"518-532\"},\"PeriodicalIF\":6.7000,\"publicationDate\":\"2024-11-21\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Transactions on Network Science and Engineering\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/10759780/\",\"RegionNum\":2,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"ENGINEERING, MULTIDISCIPLINARY\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Network Science and Engineering","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10759780/","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"ENGINEERING, MULTIDISCIPLINARY","Score":null,"Total":0}
Blockchain-Assisted Flexible Revocable Anonymous Authentication in Industrial Internet of Things
In Industrial Internet of Things (IIoT) systems, data sharing between industrial departments is often utilized to optimize management models and improve decision-making efficiency. To enable secure data sharing, authentication between smart devices is critical. However, existing authentication schemes do not comprehensively consider data anonymity, data traceability, pseudonym management, and flexible revocation of devices, which cannot meet the needs of IIoT systems for security, real-time, and dynamicity. Therefore, we propose a blockchain-assisted lightweight authentication scheme. First, we design a lightweight authentication method based on Okamoto's protocol and elliptic curve cryptography, which achieves fast authentication of smart devices while ensuring data anonymity and traceability. Second, we design a two-level key derivation algorithm and combine it with blockchain technology to address the issue of pseudonym management. Smart devices can generate pseudonyms without requesting them from the key generation center and can be revoked flexibly. Third, security proof and analysis demonstrate that the proposed scheme achieves the security objectives and is resistant to various common attacks. Finally, the performance evaluation results show that our proposed scheme performs better than the other related schemes regarding computational and communication overheads.
期刊介绍:
The proposed journal, called the IEEE Transactions on Network Science and Engineering (TNSE), is committed to timely publishing of peer-reviewed technical articles that deal with the theory and applications of network science and the interconnections among the elements in a system that form a network. In particular, the IEEE Transactions on Network Science and Engineering publishes articles on understanding, prediction, and control of structures and behaviors of networks at the fundamental level. The types of networks covered include physical or engineered networks, information networks, biological networks, semantic networks, economic networks, social networks, and ecological networks. Aimed at discovering common principles that govern network structures, network functionalities and behaviors of networks, the journal seeks articles on understanding, prediction, and control of structures and behaviors of networks. Another trans-disciplinary focus of the IEEE Transactions on Network Science and Engineering is the interactions between and co-evolution of different genres of networks.