Research And Application Of Password Authenticated Key Exchange Protocol In VANET

As an important application of the Internet of things technology,Vehicle Ad Hoc Networks(VANET)has been deeply studied and widely concerned.Among them,the security authentication between nodes has become one of the hotspots in the research of VANET security.Because of its good confidentiality,data integrity,and authentication service,the Password Authenticated Key Exchange(PAKE)protocol has become a feasible authentication mechanism in the security authentication of the VANET.However,the traditional PAKE protocol is based on a secure pre-shared short password between two or more users to generate a high-entropy session key.Since the initialization password(s)(e.g.0000 or 1234)for mass-produced equipment(e.g.Blue-tooth devices)is/are frequently used in the same or similar initialization setting.And most users have never modified it in the process of using because of various reasons.This makes it unsafe to use the PAKE protocol directly in the security authentication of VANET.Therefore,how to improve and design the PAKE protocol so that it can be safely applied to the VANET authentication scenario has a good theoretical and practical value.Based on the security encryption technology of cryptography and the random characteristics of the wireless channel,this thesis proposes two kinds of password authenticated key exchange protocols to meet different requirements.The security application of PAKE protocol in VANET environment is realized.(1)Based on real physical randomness and features of fixed wireless slow fading channels(consisting of random fading phase among different coherence time slots and stable phase statistics in the same time slot),an improved two-party password authenticated key exchange protocol is proposed.The protocol has the capability of generating high-entropy and secure shared information with a short password and the physical randomness.Then a secure session key is generated by sharing information with high-entropy,to protect the insecure communication on VANET.In this thesis,BAN logic is used to analyze the correctness of the protocol,and the security proof of the protocol is proved in the real-or-random model.Compared with the relevant protocols in the field of PAKE,this protocol has better efficiency.(2)This thesis proposes an improved three-party password authenticated key exchange protocol.The protocol can resist the stolen-verifier attack,off-line password guessing attack,impersonation attack,and other malicious attacks.During the execution of the protocol,the server only acts as the intermediary of calculation and forwarding,and it cannot calculate the security session key between users.Moreover,the protocol uses the characteristics of the physical channel to solve the problem of password security sharing between users and servers.In this thesis,the resistance and performance of the protocol are analyzed.Among them,performance analysis includes security,session key length,computational complexity,computational time consumption,and so on.Compared with the relevant protocols,this protocol has good security and efficiency.