40 results about "Broadcast authentication" patented technology

A method for authenticating a message that is transmitted wirelessly. The method includes providing a set of private key values that define a private key and performing a key pair generation process that provides a key pair including the private key and a public key, where performing the key pair generation process includes applying one or more hash functions to the private key values, where a succeeding hash function provides a hash of a previous hash function. The scheme uses a signature generation process that generates a message digest by applying a hash function on the message to be signed and then separates the message digest into two parts including signing bits and selection bits and using the private key to sign the message. A receiver verifies the authenticity of the received message using the public key and a signature verification algorithm.

A computationally efficient message verification strategy that achieves non-repudiation and resilience to computational denial of service attacks in conjunction with a broadcast authentication protocol that authenticates messages using a combination of a digital signature and a TESLA MAC. When messages are received at a receiver, the verification strategy separates the messages into messages with the same sender identification. The strategy then determines whether the TESLA MAC authenticator is valid for each message and discards those messages that do not have a valid TESLA MAC. The strategy collects the messages that have a valid TESLA MAC for each sender identification and performs a batch verification process on the group of messages to determine if the messages in the group have a valid digital signature. This strategy verifies each message in the group of messages if the batch verification process shows that the group of messages has a valid digital signature.

An information processing system performing highly secure broadcast authentication while reducing a delay until authentication, a communication amount, and a computation amount is provided. A server (100) generates authentication information for transmission data by combining a tag relating to the transmission data and a chain value associated in a chain with transmission order of the transmission data. The tag relating to the transmission data is generated by using a common key. The chain is generated by using a one-way function. A node (200) verifies whether a chain value associated with transmission order of data received in the past is generated or not by applying the one-way function to a chain value extracted by using a tag relating to the received data and authentication information for the received data. The tag relating to the received data is generated by using the common key.

The invention relates to a wireless sensor network broadcast authentication method based on an ECDSA algorithm, belonging to the fields of communication technology and information security. The present invention utilizes ECDSA algorithm and Bloom? filter, by dividing the survival time of the wireless sensor network into several small time periods, a key pair is generated for each time period according to the ECDSA signature algorithm, and the public key set is mapped to a bit string by hash operation, and the bit string The string is loaded into the network node, and then public key authentication, message signature and message authentication are performed. This method has good real-time performance, low calculation cost, and can tolerate data packet loss. Compared with the ShortPK algorithm, it occupies less memory. Lifetime PECDSA-BA, this method has the advantages of real-time performance, computing performance, security performance, tolerance to data packet loss and so on.

The invention discloses an authentication method and an authentication system. The method is applied to an interface layer of an authentication platform. The authentication platform includes an independent interface layer, a radio and television business operation support system and an on-demand push system. The method includes: receiving The authentication request sent by the user from the terminal through the radio and television service operation support system, the authentication request includes the authentication information; the radio and television service operation support system corresponding to the authentication information is determined according to the authentication information, and the authentication information is sent to The radio and television business operation support system; when receiving the authentication result returned by the radio and television business operation support system, the authentication result is sent to the terminal through the interface layer. The invention connects different radio and television business operation support systems by establishing a unified interface layer, and realizes unified management of user authentication and playback authentication.

The invention relates to a safety method for a CoAP protocol under a multicast situation, and belongs to the technical field of the network. On the basis of the CoAP protocol designed by orienting a resource-limited an IP network, the invention proposes a safety method for a CoAP protocol multicast mechanism. The safety method comprises a multicast authenticiaton encryption algorithm and a Booleanarray detection mechanism to guarantee the end-to-end security, and the safety method is suitable for the own agent mechanism of the CoAP protocol. The safety method has the advantages as follows: finishing the secrecy transmission to a server node in a multicast group from the information while the broadcast authentication is realized, thereby enabling the server to extract the encryption information from an authenticated agent server, wherein other servers cannot receive the encryption information. By adopting the GDOI algorithm and a symmetric key mechanism in a sensor network, the Booleanarray mechanism is added in the agent server, and the security of the data communication is improved under the situation of guaranteeing the information transmission.

The invention discloses an efficient message authentication method for a vehicular ad hoc network based on edge computing, which comprises the steps of system initialization of participating entitiesof the Internet of vehicles, wherein the step comprises two processes such as parameter generation and vehicle pseudonym and signature generation; and (2) message authentication of an RSU (Roadside Unit) and a vehicle, wherein the step comprises four processes such that the RSU elects an edge computing vehicle (ECV), the ECV executes a task, the RSU checks an authentication result of the ECV and vehicle message authentication is performed. The signing portion of the invention adopts an elliptic curve cryptography based operation, thereby enabling the computation and transmission overhead to below; further the ECV is elected according to a fuzzy logic control theory to achieve local optimal election; the ECV is set to help the RSU to achieve quick and accurate message signature authentication; and the RSU reduces the redundant authentication of the whole system to the maximum extent through broadcasting the authentication result, and the operating efficiency of the whole vehicular ad hoc network is improved.

The invention provides a wireless sensor network broadcast authentication method based on a Chinese remainder theorem, and aims to solve the problems of origin authentication and message integrity of a broadcast data package in a wireless sensor network. The wireless sensor network broadcast authentication method comprises the following steps that: a base station takes a unique solution of a congruence equation set of the Chinese remainder theorem as a 'signature' of a message to construct the broadcast data package and sends the broadcast data package; and a receiving party recovers a message authentication code (MAC) according to the 'signature' of in the broadcast data package, generates the message authentication code through the message and pair secret keys in the broadcast data package, and finishes the authentication operation on the broadcast data package by comparing whether the MACs are equal. According to the method suitable for the broadcast authentication of the wireless sensor network, a complex secret key management mechanism is unnecessary in the whole wireless sensor network, the instant authentication, the tolerance package losing and the like on an optional broadcast message can be realized, and according to the method, the capabilities of replay attack resistance, DOC (Disk Operating System) attack resistance, and node trapping resistance also can be realized.