摘要
针对现场总线缺乏身份认证以及设备计算资源和网络带宽受限的缺点,提出一种适用于现场总线网络的无证书聚合签名方案,避免复杂的证书管理和密钥管理,在注册阶段使用中国剩余定理,提高假名分发的效率。在安全性证明部分,利用分叉引理对所提签名方案的不可伪造性进行证明。效率方面,签名生成和签名验证阶段避免计算量较大的双线性对运算,支持聚合签名,实现对签名的批量认证,适用于对实时性要求较高且计算资源受限的现场总线网络。实验结果表明,该方案相比于其它方案,计算开销和通信开销有显著降低。
Aiming at the shortcomings of fieldbus,such as the lack of identity authentication and the limitation of computing resources and network bandwidth,the certificate-free aggregation signature scheme for fieldbus network was proposed,which avoided complex certificate management and key management,and the Chinese residual theorem was used in the registration stage to improve the efficiency of pseudonym distribution.In terms of security,the proposed signature scheme was proved to be unforgerable by using the bifurcated lemma under the stochastic predictor model.In terms of efficiency,the stage of signature generation and signature verification avoided bilinear pair operation which required a large amount of computation,and supported aggregate signature,which realized batch authentication of signatures.It was suitable for fieldbus network with high requirement on real-time performance and limited computing resources.Experimental results show that the calculation cost and communication cost of this scheme are significantly reduced compared with other schemes.
作者
刘诗源
刘明哲
闫炳均
LIU Shi-yuan;LIU Ming-zhe;YAN Bing-jun(Key Laboratory of Networked Control Systems,Chinese Academy of Sciences,Shenyang 110016,China;Robotics and Intelligent Manufacturing Innovation Institute,Chinese Academy of Sciences,Shenyang 110169,China;Shenyang Institute of Automation,University of Chinese Academy of Sciences,Shenyang 110169,China)
出处
《计算机工程与设计》
北大核心
2024年第7期1921-1927,共7页
Computer Engineering and Design
基金
国家重点研发计划基金项目(2021YFB20122302)。
关键词
现场总线网络
无证书签名
中国剩余定理
分叉引理
随机预言机
椭圆曲线
聚合签名
fieldbus network
certificateless signature
Chinese remainder theorem
forking lemma
random oracle model
elliptic curve
aggregate signature
