Research On Privacy Protection Technology Of Internet Of Things Terminal Based On Group Signature

More and more intelligent terminal devices are being used in important fields such as smart transportation,smart home,and smart medical care.Among them,in the context of Internet of Vehicles in smart transportation,the emergence of smart parking reservation system enables drivers to obtain real-time parking discount information and make parking reservation applications.In order to protect the privacy and security of drivers,registered vehicles in the system must be anonymously authenticated and communicated with service providers.As a key technology for information security and privacy protection,the anonymous authentication mechanism has been applied in the fields of Internet of Vehicles and Smart Healthcare.However,most service systems of Internet of Vehicles use a single authorized authority to directly track and resolve users’ real identities,and once the authorized authority is threatened,all users will face the risk of direct leakage of sensitive privacy information.Meanwhile,some schemes have high communication overhead and cannot resist multiple types of attackers at the same time.To address the above issues,this thesis improves a certificateless signing mechanism without bilinear pairs to guarantee efficient anonymous authentication between vehicles and other devices,and proves to be resistant to forgery attacks by malicious signers and malicious key generation centers(KGCs).At the same time,the combination and improvement of certificateless signature and group signature technology are realized by adding regional trust center(RTC)and unrevoked identification,generating regional group signature key pairs for vehicles,realizing the collaboration of both group administrators and KGC to resolve the real identity of users,and guaranteeing the anonymity of vehicle communication and the double protection of sensitive information of terminals.The main work is as follows:(1)In this thesis,we propose an improved certificateless signature scheme based on the elliptic curve discrete logarithm problem(ECDLP)to demonstrate its resistance to attacks by both malicious signers and malicious key generation centers.The elliptic curve scalar multiplication operation is applied to the scheme,and the efficiency is analyzed by corresponding experiments,and the experimental results show that the scheme in this thesis has lower computational cost.(2)In this thesis,we propose a hybrid signature scheme based on improved certificateless signature and group signature techniques.In this thesis,RTC is added as group administrator to provide anonymous authentication and communication service for vehicles,which avoids the drawback of excessive power of previous driver members as group administrator.In this thesis,we add unrevoked signatures to realize the collaboration between group administrator and KGC to resolve the real identity of users,and realize the double protection of communication anonymity and terminal sensitive information,which will effectively reduce the risk of privacy leakage of vehicle users once the authorized authority is threatened.(3)The improved scheme proposed in this thesis is analyzed for correctness and security,and the performance is compared with some existing certificateless group signature schemes,and the results show that the improved scheme in this thesis has high computational efficiency while guaranteeing security.