Group-based Authentication And Key Agreement Protocol For Machine Type Communication

With the popularity of the Internet of Things, as one of the forms of its implementation, machine type communications (MTC) has gained rapid development, and applications has been made in areas such as smart home, smart grid, e-health, and remote monitoring and tracking. With advantages over low-cost, low-power, easy to deploy and without human involvement, machine type of communications has great prospects for development But the existing network is designed for person to person communications, and lacks of optimization for machine type communications. When the massive machine type communication devices send and receive data at the same time, it will make a tremendous impact on the existing network. In addition, in high real-time requiring applications, massive high concurrent service requests make the servers in heavy work of information processing all the time, which presents serious challenges to the application servers in performance and quality of service. For the issues above, there have been some optimization solutions. But these solutions are mainly focused on how to design access control mechanisms to mitigate the impact that the MTC caused on the existing networks, and almost not considered on how to reduce data congestion and server overload on the business level, especially on the optimization problem of the authentication and key agreement stage. Therefore, authentication and key agreement schemes at MTC application layer are researched in depth. Through.improved group-based key agreement mechanism and agent mechanism, reducing core network signaling overhead and server load are taken into account. And the main research results obtained are as follows:1. Group key agreement scheme for MTC in multimedia services has been studied. In multimedia services of MTC, the communication contents between the server and each MTC device are the same. Based on this feature, the server can broadcast service data to all the devices. Meanwhile, in order to secure the service data stream, the server and each MTC devices need to share a group key. Accordingly, a group key agreement scheme is proposed in this paper. In this scheme, the application server generates pre-shared key with each devices in the group by the generic authentication architecture (GAA). With the pre-shared keys, the server can generates the group session key, and broadcasts the necessary information that the MTC device side required for calculating out the group key. Using the broadcast information, each device can independently calculate out the security session key for the multimedia broadcast service. Analysis shows that, compared with the existing Broadcast Multicast Service (MBMS) group key distribution scheme, the proposed key agreement scheme has a smaller message exchange rounds and communication overhead.2. Group-proxy-based MTC application architecture and proxy-based authentication and key agreement protocol have been studied. Capillary network accessing is one of the most common accessing methods. The MTC devices in capillary networks usually do not have cellular mobile communication ability. Therefore, the traditional GAA is not suitable for authentication and key agreement between the devices and the application server. We propose an MTC application architecture which is based on group agents. By functioning as the proxy of MTC servers, MTC application gateways implement the authentication of MTC devices, instead of the servers. And the proxy administrator is introduced to accomplish the delegation request of MTC servers and manage the agent groups. In the proxy based authentication and key agreement protocol, the proxy gateway and the MTC devices conduct a procedure of mutual authentication. And after authentication, the proxy sends necessary information to the MTC server, which makes the MTC server and each MTC device generate a shared communication key. Analysis shows that the protocol satisfies security properties such as collusion resistance, resistance to man in the middle attack, replay attack resistance and so on; and reduces the communication costs of the core network and the burden of the MTC server.