重庆理工大学学报(自然科学) ›› 2023, Vol. 37 ›› Issue (5): 194-203.

• 信息·计算机 • 上一篇    下一篇

车载自组网中基于 UTXO的无证书分布式匿名认证方案

崔凯平,冯 霞,郭丛摇,龚 玲   

  1. (1.江苏大学 汽车与交通工程学院,江苏 镇江 212013; 2.江苏大学 汽车工程研究院,江苏 镇江 212013)
  • 出版日期:2023-06-21 发布日期:2023-06-21
  • 作者简介:崔凯平,男,硕士研究生,主要从事车联网安全研究,Email:2212004078@stmail.ujs.edu.cn;冯霞,女,副教授,硕 士生导师,主要从事车联网安全、物联网隐私计算研究,Email:xiazio@ujs.edu.cn。

Certificate-free distributed anonymous authentication scheme based on UTXO in vehicular ad-hoc network

  • Online:2023-06-21 Published:2023-06-21

摘要: 针对传统基于数字证书的身份认证方案中认证效率低、方案可扩展性差的问题,提 出一种基于未花费的交易输出(unspenttransactionoutput,UTXO)模型的无证书分布式匿名认证 方案。用户将交通信息和基于 UTXO模型构建的交易上传至区域可信机构(regionaltrustedau thority,RTA)。RTA通过检查上传交易中包含的交易输入(TransactionInput)的有效性验证消 息发送者身份的合法性。构建交易更新机制实现可扩展性,避免由于维护数字证书导致的系统 数据库存储量不断增长的问题。基于安全性分析,将所提方案与现有车载自组网(vehicularad -hocnetwork,VANET)中身份认证方案进行安全性能的比较,证明所提方案在匿名性、可追踪 性及可认证性等安全方面的考虑更加完善。理论分析与仿真实验表明:所提出方案的计算与存 储开销低于常见认证方案。在方案可扩展性方面,基于仿真环境下的区块链状态数据库检索开 销保持在 0.3ms左右,存储成本稳定在 33M左右;在认证效率方面,所提方案优于现有方案至 少 33.19%。

关键词: VANET, 匿名认证, 无证书, UTXO, 交易

Abstract: Aiming at the issues of low authentication efficiency and poor scalability in traditional ID authentication schemes based on digital certificates, this paper proposes a certificate-free distributed anonymous authentication scheme based on the unspent transaction output (UTXO) model. Users upload traffic messages to the Regional Trusted Authority (RTA) together with transactions generated based on the UTXO model. The RTA verifies the legitimacy of the message sender’s identity by checking the validity of the transaction input contained in the uploaded transaction. In addition, this paper designs a transaction update mechanism to guarantee the scheme scalability, avoiding a continuous increase in the system database storage caused by maintaining digital certificates. Based on the security analysis, compared with the existing identity authentication schemes in vehicular ad-hoc network (VANET), the proposed scheme is better in terms of security considerations such as anonymity, traceability and authentication. The theoretical analysis and the simulation experiments show that computational and storage costs of the proposed scheme are lower than those of the existing common authentication schemes. In terms of scheme scalability, the retrieval overhead of the blockchain state database based on the simulation environment remains at around 0.3 ms, while the storage cost is stable at around 33 M. In terms of authentication efficiency, the proposed scheme outperforms the existing schemes by at least 33.19%.

中图分类号: 

  • TP391