Universal authentication method for terminal equipment without identity in Internet-of-things

Abstract

The invention discloses a universal authentication method for terminal equipment without identity in Internet-of-things, which is used for assisting the terminal equipment by introducing edge equipment, and delegates the authentication task to the edge equipment. The method includes a registration period, a session key generation phase, an instruction generation phase and an instruction verification and execution phase. The invention only according to the random identity of the terminal equipment, does not disclose any basic attribute thereof, protects the identity information of the equipmentwell, and realizes the function of privacy protection. Considering the limitation of computing power of Internet of Things devices, a lightweight authentication protocol based on hash chain technology is proposed for non-identifiable terminals.

Description

technical field [0001] The present invention is designed for an identity-less universal authentication method for terminal devices in the Internet of Things environment. The present invention is efficient and safe, can resist most traditional attacks, and can make up for the hardware limitations of terminal devices, and belongs to the field of information security. technical background [0002] The Internet of Things is constantly changing the way we live, work and learn. It can collect valuable data anytime and anywhere, and extract knowledge from the collected data to create a smarter world. However, while the Internet of Things brings many conveniences, it also brings many security problems. For example, the Internet of Things system collects a large amount of user information, which may lead to the leakage of user information. Personal information is sensitive information and user privacy. Protecting user privacy is an important issue nowadays. [0003] After research,...

AI Technical Summary

Problems solved by technology

The first type of authentication protocols use symmetric encryption algorithms because of the low computational cost of symmetric encryption algorithms. However, these protocols may be subject to man-in-the-middle attacks, and private information will inevitably be leaked; another disadvantage of these protocols is the inherent reliability of privacy protection. Scalability issues, this type of protocol is undoubtedly impractical

The second type of authentication protocol regularly updates the credentials of the terminal device, however, the strong identity of the terminal device can still be tracked during the validity period of the certificate; in addition, such protocols require each terminal device to store a large number of authentications and pseudonyms, which means that it is difficult to Remove compromised endpoints

The third type of authentication protocol uses a delegation-based mechanism. The advantage of this protocol is that it has low computational cost, but the disadvantage is that it cannot easily achieve the performance of private storage.

Images