Cross-domain Authentication Schemes For Hyperscale Internet Of Things

Internet of Things has been widely used in many aspects of production and life.With the increase of the scale of the Internet of Things,hierarchical management structure not only facilitates management but also balances the load of the system well,which is of great significance.At the same time,mobile ad hoc network and other Internet of Things application scenarios emphasize the dynamic and scalability of the Internet of Things system.The Internet of Things system can be well represented by the virtual enterprise model,where virtual enterprises refer to the independently managed groups in the Internet of Things.Virtual enterprises form their own management domain.If they want to establish mutual trust with others,it is necessary to consider how to achieve cross-domain authentication.At present,the existing cross-domain authentication schemes have some problems,such as long authentication path between virtual enterprises,bad system scalability,reliance on trusted third party and centralization.At the same time,when dealing with the hyperscale Internet of Things,relying on off-line information such as off-line keys will also cause the system to incur a large overhead.In order to solve these problems,this thesis proposes two cross domain authentication schemes for hyperscale Internet of Things:UP-(t,n)-SS based cross-domain authentication scheme and SBP-(t,n)-SS based cross-domain authentication scheme.UP-(t,n)-SS based cross-domain authentication scheme reduces the length of the authentication path to the minimum while ensuring good scalability of the system;at the same time,it gets rid of the dependence of the trusted third party;it also makes all virtual enterprises entirely equal and realizes decentralization;in addition,the scheme does not need the support of offline key,and it also fits the application scenario of the hyperscale Internet of Things.SBP-(t,n)-SS based cross-domain authentication scheme uses verifiable secret sharing to eliminate the potential security hazard in the first scheme.It optimizes the storage space and reduces the communication overhead;in addition,it uses the symmetry of symmetric bivariate polynomials to make virtual enterprises have a symmetric key between each other,which greatly reduces the execution times of identity based encryption and decryption.Due to the high time complexity of bivariate polynomial generation and encryption,SBP-(t,n)-SS based cross-domain authentication scheme is suitable for the early establishment of the hyperscale Internet of Things and when the number of virtual enterprises is relatively small,while UP-(t,n)-SS based cross-domain authentication scheme is more suitable for reducing the cost of polynomial calculation when the scale expands to a considerable extent.The two schemes complement each other to form a cross-domain authentication scheme suitable for the hyperscale Internet of Things scenario.