具有自盲性和可问责性的成员时间跨度匿名认证协议

IF 8.9 1区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

IEEE Internet of Things Journal Pub Date : 2025-04-25 DOI:10.1109/JIOT.2025.3564396

Qiuyun Lyu;Xiwen Liang;Shaopeng Cheng;Fu Li;Yizhi Ren;Chengli Xu;Weizhi Meng;Duohe Ma

{"title":"具有自盲性和可问责性的成员时间跨度匿名认证协议","authors":"Qiuyun Lyu;Xiwen Liang;Shaopeng Cheng;Fu Li;Yizhi Ren;Chengli Xu;Weizhi Meng;Duohe Ma","doi":"10.1109/JIOT.2025.3564396","DOIUrl":null,"url":null,"abstract":"Internet of Things (IoT) devices using subscription services (e.g., connected vehicles accessing entertainment programs) often purchase membership credentials from service providers with limited usage counts or validity periods, we call them pay-per-use or time span of membership services. However, users’ access records, usage preferences, and habits are collected by network adversarys or membership providers for creating users’ profiles, targeted advertising, and even for being sold maliciously. To deal with these problems, lots of anonymous authentication protocols are proposed to provide users with pseudonyms to conceal their real identities. Although these protocols effectively prevent network adversarys from compromising users’ privacy, membership service providers can still gather users’ behavioral privacy via their membership credentials. Therefore, several scholars proposed <italic>k</i>-times anonymous authentication protocols and self-blind credentials to enhance users’ privacy protection, but the <italic>k</i>-times anonymous authentication protocols are only for pay-per-use membership services and the schemes of self-blind credentials are lack of regulating malicious users. To address these issues, this article proposes an anonymous authentication protocol for time span of membership (AATM) with self-blindness and accountability. Specifically, we utilize structure preserving signatures on equivalence classes (SPS-EQ) and signatures with flexible public key (SFPK) to build accountable, self-blinding credentials that ensure that every time a user visits a member, he or she can create a brand new identity on their own, which not only prevents users from being linked by service providers, but also supports conditional fair regulation. Security and performance analyses show that AATM is better than the state-of-the-art schemes in terms of security and privacy-preserving capabilities, and its computation cost also meets the practical application requirements.","PeriodicalId":54347,"journal":{"name":"IEEE Internet of Things Journal","volume":"12 14","pages":"27671-27685"},"PeriodicalIF":8.9000,"publicationDate":"2025-04-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"AATM: An Anonymous Authentication Protocol for Time Span of Membership With Self-Blindness and Accountability\",\"authors\":\"Qiuyun Lyu;Xiwen Liang;Shaopeng Cheng;Fu Li;Yizhi Ren;Chengli Xu;Weizhi Meng;Duohe Ma\",\"doi\":\"10.1109/JIOT.2025.3564396\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Internet of Things (IoT) devices using subscription services (e.g., connected vehicles accessing entertainment programs) often purchase membership credentials from service providers with limited usage counts or validity periods, we call them pay-per-use or time span of membership services. However, users’ access records, usage preferences, and habits are collected by network adversarys or membership providers for creating users’ profiles, targeted advertising, and even for being sold maliciously. To deal with these problems, lots of anonymous authentication protocols are proposed to provide users with pseudonyms to conceal their real identities. Although these protocols effectively prevent network adversarys from compromising users’ privacy, membership service providers can still gather users’ behavioral privacy via their membership credentials. Therefore, several scholars proposed <italic>k</i>-times anonymous authentication protocols and self-blind credentials to enhance users’ privacy protection, but the <italic>k</i>-times anonymous authentication protocols are only for pay-per-use membership services and the schemes of self-blind credentials are lack of regulating malicious users. To address these issues, this article proposes an anonymous authentication protocol for time span of membership (AATM) with self-blindness and accountability. Specifically, we utilize structure preserving signatures on equivalence classes (SPS-EQ) and signatures with flexible public key (SFPK) to build accountable, self-blinding credentials that ensure that every time a user visits a member, he or she can create a brand new identity on their own, which not only prevents users from being linked by service providers, but also supports conditional fair regulation. Security and performance analyses show that AATM is better than the state-of-the-art schemes in terms of security and privacy-preserving capabilities, and its computation cost also meets the practical application requirements.\",\"PeriodicalId\":54347,\"journal\":{\"name\":\"IEEE Internet of Things Journal\",\"volume\":\"12 14\",\"pages\":\"27671-27685\"},\"PeriodicalIF\":8.9000,\"publicationDate\":\"2025-04-25\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Internet of Things Journal\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/10976994/\",\"RegionNum\":1,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, INFORMATION SYSTEMS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Internet of Things Journal","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10976994/","RegionNum":1,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

摘要

使用订阅服务的物联网（IoT）设备（例如，访问娱乐节目的联网车辆）通常从服务提供商处购买会员证书，这些证书具有有限的使用次数或有效期，我们称之为按使用付费或会员服务的时间跨度。然而，用户的访问记录、使用偏好和习惯被网络对手或会员提供商收集，用于创建用户配置文件、定向广告，甚至用于恶意销售。为了解决这些问题，人们提出了许多匿名认证协议，为用户提供假名来隐藏其真实身份。尽管这些协议有效地防止了网络攻击者对用户隐私的侵害，但会员服务提供商仍然可以通过用户的会员凭证收集用户的行为隐私。因此，一些学者提出了k次匿名认证协议和自盲凭证来增强用户的隐私保护，但k次匿名认证协议仅针对按次付费的会员服务，自盲凭证方案缺乏对恶意用户的监管。为了解决这些问题，本文提出了一种具有自盲性和问责性的成员时间跨度（AATM）匿名身份验证协议。具体来说，我们利用等价类上的结构保留签名（SPS-EQ）和灵活公钥签名（SFPK）来建立负责任的、自盲的凭证，确保用户每次访问成员时都可以自己创建一个全新的身份，这不仅可以防止用户被服务提供商链接，而且还支持有条件的公平监管。安全性和性能分析表明，AATM在安全性和隐私保护能力方面优于现有方案，其计算成本也符合实际应用需求。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

AATM: An Anonymous Authentication Protocol for Time Span of Membership With Self-Blindness and Accountability

Internet of Things (IoT) devices using subscription services (e.g., connected vehicles accessing entertainment programs) often purchase membership credentials from service providers with limited usage counts or validity periods, we call them pay-per-use or time span of membership services. However, users’ access records, usage preferences, and habits are collected by network adversarys or membership providers for creating users’ profiles, targeted advertising, and even for being sold maliciously. To deal with these problems, lots of anonymous authentication protocols are proposed to provide users with pseudonyms to conceal their real identities. Although these protocols effectively prevent network adversarys from compromising users’ privacy, membership service providers can still gather users’ behavioral privacy via their membership credentials. Therefore, several scholars proposed k-times anonymous authentication protocols and self-blind credentials to enhance users’ privacy protection, but the k-times anonymous authentication protocols are only for pay-per-use membership services and the schemes of self-blind credentials are lack of regulating malicious users. To address these issues, this article proposes an anonymous authentication protocol for time span of membership (AATM) with self-blindness and accountability. Specifically, we utilize structure preserving signatures on equivalence classes (SPS-EQ) and signatures with flexible public key (SFPK) to build accountable, self-blinding credentials that ensure that every time a user visits a member, he or she can create a brand new identity on their own, which not only prevents users from being linked by service providers, but also supports conditional fair regulation. Security and performance analyses show that AATM is better than the state-of-the-art schemes in terms of security and privacy-preserving capabilities, and its computation cost also meets the practical application requirements.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

IEEE Internet of Things Journal Computer Science-Information Systems

CiteScore

17.60

自引率

13.20%

发文量

1982

期刊介绍： The EEE Internet of Things (IoT) Journal publishes articles and review articles covering various aspects of IoT, including IoT system architecture, IoT enabling technologies, IoT communication and networking protocols such as network coding, and IoT services and applications. Topics encompass IoT's impacts on sensor technologies, big data management, and future internet design for applications like smart cities and smart homes. Fields of interest include IoT architecture such as things-centric, data-centric, service-oriented IoT architecture; IoT enabling technologies and systematic integration such as sensor technologies, big sensor data management, and future Internet design for IoT; IoT services, applications, and test-beds such as IoT service middleware, IoT application programming interface (API), IoT application design, and IoT trials/experiments; IoT standardization activities and technology development in different standard development organizations (SDO) such as IEEE, IETF, ITU, 3GPP, ETSI, etc.