Research On Cross-domain Authentication And Key Agreement Protocol In Internet Of Things Environment

In recent years,with the continuous development and progress of science and technology,the Internet of Things(Internet of Things,Io T)has gradually become an important international research hotspot,and the application of the Internet of Things is also widely used in all aspects of our lives,such as smart home,smart medical,Intelligent transportation and other fields.At the same time,since the information transmitted in the Internet of Things environment is likely to involve the user’s private information,such as the patient’s physiological characteristics information in the smart medical environment,and the location information of the car owner in the intelligent transportation environment.Therefore,how to ensure the privacy of users and the security of communication between users in the Internet of Things environment is an urgent problem to be solved.In addition,there may be differences between entities performing key negotiation in the Internet of Things environment due to differences in brands,models,etc.,resulting in the need to use different cryptographic parameters between entities performing key negotiation.This allows communicating group members to be in trust domains such as different time zones,networks,geographical distributions or institutions.Therefore,in order to realize secure communication in such situations,this paper designs cross-domain authentication and key agreement protocols that meet different needs according to different situations.The main research content and contributions of this paper are summarized as follows:1.This paper first designs two cross-domain authentication and key agreement protocols suitable for general Io T environments.The two protocols take the Internet of Things smart factory environment as the research scenario.The first protocol communicates based on ECQV implicit certificates,which is suitable for scenarios where two devices are in two different trust domains and need to complete fast communication;the second protocol is based on The certificateless public key cryptography system is used for communication,which is suitable for scenarios where two devices are in two different trust domains but require higher security for the communication environment.And while these two protocols have higher security than similar protocols,they still have advantages in terms of efficiency.2.This paper then aims at the scenario where multiple users need to communicate at the same time in the Internet of Things environment,and these users need to move in real time.Taking the communication of the Internet of Vehicles as an example,we design a cross-domain authentication and group key agreement protocol in the Internet of Vehicles environment.The protocol is based on elliptic curve cryptography,which can complete group key agreement under one RSU_j when a group of vehicles V_i(i=1～n)are in different domains,and the protocol will be updated in real time when vehicles join or leave RSU_j.On the basis of realizing cross-domain group key negotiation,the protocol takes into account the fact that the communication environment of the Internet of Vehicles environment is more fragile than the traditional communication environment,and adopts strict security certification,which shows that the protocol meets various security requirements of key negotiation.At the same time,the protocol maintains high computing efficiency and communication efficiency,and the computing cost and communication cost are better than most similar protocols.