Bidirectional anonymous authentication system and method based on mimicry defense principle

Abstract

The invention discloses a bidirectional anonymous authentication system and method based on a mimicry defense principle, and is applied to the technical field of information security. The method comprises the steps that a certificate issuer is initialized; a Join sub-protocol runs between a platform and the certificate publisher; the platform operates a Sign sub-protocol between the TPM and the Host; and a signature detection party operates the Verify sub-protocol through a heterogeneous executive body. According to the invention, a DAA bidirectional anonymous authentication technology is adopted; a mimicry module is added in the signature detection party; while remote anonymous authentication of the underlying equipment accessing the Internet of Things network is realized, the endogenoussecurity function of the mimicry module can effectively resist any security threat implemented by using a known and unknown software and hardware vulnerability back door in a target system, so that the access security of the Internet of Things equipment is ensured at the technical architecture level, the three-in-one attribute of high reliability, high credibility and high availability is achieved, and the security of the Internet of Things system is ensured.

Description

Technical field [0001] The invention relates to the technical field of information security, in particular to a two-way anonymous authentication system and method based on the mimic defense principle. Background technique [0002] At present, the Internet of Things is developing rapidly, and more and more Internet of Things devices are put into use. At the same time, considering the intelligent process of the Internet of Things, the computing capabilities of terminal devices will also have rapid development compared with the original RFID. With the improvement of computing power, the work undertaken by terminal equipment is also developing in more, more complex and more sensitive directions. More and more sensitive data will be collected and analyzed through these equipment to complete corresponding tasks. The more criminals will look at these sensitive data and try to collect them for ulterior purposes. Therefore, the security of the Internet of Things system will also face mor...

AI Technical Summary

Problems solved by technology

[0005] Technical purpose: In view of the defects in the prior art that DAA anonymous authentication cannot be actively defended and the security of network information is poor, the present invention discloses a two-way anonymous authentication system and method based on the principle of mimic defense, using DAA two-way anonymous authentication technology, Adding a mimic module in the signature detection side, while realizing remote anonymous authentication of the underlying devices connected to the Internet of Things network, at the same time ensuring the access security of the Internet of Things devices at the technical architecture level, with "high reliability, high credibility, high "Available" trinity attribute to ensure the security of the IoT system

Images