面向车联网多点协作联合传输的安全认证与密钥更新方法
|
摘要
未来基于车联网的车路协同和自动驾驶场景要求车-车/车-路等网络通信在保证数据安全的前提下,具备低时延、高可靠的特性,从而保证车辆的行驶安全以及车/人的信息安全。LTE-V2X作为车联网通信方案之一,LTE的多点协作联合传输(Coordinated Multiple Points-Joint Transmission, CoMP-JT)技术不仅可以减少车辆在高速行驶过程中进行基站(Evolved Node B, eNB)切换时的通信中断,还能通过多个基站的协同传输来辅助提高网络的数据传输性能。然而当前LTE标准中的安全密钥管理方案无法满足多点协作联合传输过程中的密钥管理场景。针对该问题,提出一种可用于LTE-V2X车联网通信中多点协作传输切换的安全密钥生成与更新算法。该算法由车辆生成基站切换请求并使用随机数、共享密钥、目标基站公钥对切换请求进行加密、广播;基于密码学特性,目标基站不仅可基于私钥从密文请求中计算出共享密钥,还可以计算得到后续的会话密钥;车辆则可以基于目标基站位置信息、生成请求时的随机数计算出会话密钥,从而实现在只需要1次密钥传输的前提下,达成车辆与基站之间的密钥共享和密钥更新,并从密码学角度针对该密钥生成与更新算法进行验证分析。研究结果表明:在LTE-V2X多点协作传输时的基站切换过程中,该算法能够确保车辆与基站进行后向/前向密钥分离的安全认证以及会话密钥建立;与传统方案相比,所提方法可减少26.4%的基站切换过程中引入的通信时延,基站信道负载均仅为传统方案的1/2,并且随基站小区范围内车辆数目增加,基站的信道负载也仅线性增加,提升了该算法在LTE-V2X车联网场景中的适用性。
With the popularization of vehicle-to-everything(V2 X)-based autonomous driving and cooperative vehicular infrastructure, the requirements of acceptable delays and potential attack surfaces introduced for vehicular network communications have become more stringent in order to satisfy the basic requirements of driving safety and privacy security. As the major vehicular communication solution, long-term evolution(LTE)-V2 X continues to use the coordinated multi-point joint transmission(CoMP-JT) introduced in LTE to reduce the handover delay at the base station(evolved node B, eNB) and mitigate the low quality of throughout in a high-speed moving scenario by employing the joint transmission technique during the handover process. However, the current security key management scheme in the LTE standard does not satisfy the requirements of the key management scenario in the CoMP-JT process. Therefore, this paper proposes a novel handover key generation and update scheme that can be used for CoMP-JT handover in LTE-V2 X communication. Before transmission handover, the serving eNB and target eNB should each have a public-private key pair based on their location information and also share a re-encryption key. Subsequently, the moving vehicle generates a handover request, which is encrypted with the public key of the target eNB, the shared key, and a random number. The handover request will be broadcasted to the serving and target eNBs. The target eNB can recover the shared key and calculate the subsequent session key from the received ciphertext with its private key. Synchronously, the vehicle calculates the subsequent session key based on the location information of the target eNB and the random number used to generate the handover request. With this proposed scheme, the separation of forward/backward key can be achieved without reduction of the diversity gain achieved from joint transmission handover. In other words, the session key is generated by the vehicle and transmitted to the eNBs involved securely. In this study, the scheme for key generation and update was verified and analyzed based on cryptography theory and the capability of establishing a secure communication session between the vehicle and eNB without disrupting the separation of backward/forward keys in the process of handover during LTE-V2 X CoMP-JT was demonstrated. The performance evaluation shows that compared with traditional schemes, the proposed scheme can reduce the communication delay introduced by the transmission handover process by 26.4%, and also reduce channel loading between the vehicle and target eNB by almost 50%. Moreover, with the increase in the number of vehicles in the cell range, the channel loading of the base station increases linearly, which improves the applicability of the scheme in the LTE-V2 X vehicular networking scenario.
With the popularization of vehicle-to-everything(V2 X)-based autonomous driving and cooperative vehicular infrastructure, the requirements of acceptable delays and potential attack surfaces introduced for vehicular network communications have become more stringent in order to satisfy the basic requirements of driving safety and privacy security. As the major vehicular communication solution, long-term evolution(LTE)-V2 X continues to use the coordinated multi-point joint transmission(CoMP-JT) introduced in LTE to reduce the handover delay at the base station(evolved node B, eNB) and mitigate the low quality of throughout in a high-speed moving scenario by employing the joint transmission technique during the handover process. However, the current security key management scheme in the LTE standard does not satisfy the requirements of the key management scenario in the CoMP-JT process. Therefore, this paper proposes a novel handover key generation and update scheme that can be used for CoMP-JT handover in LTE-V2 X communication. Before transmission handover, the serving eNB and target eNB should each have a public-private key pair based on their location information and also share a re-encryption key. Subsequently, the moving vehicle generates a handover request, which is encrypted with the public key of the target eNB, the shared key, and a random number. The handover request will be broadcasted to the serving and target eNBs. The target eNB can recover the shared key and calculate the subsequent session key from the received ciphertext with its private key. Synchronously, the vehicle calculates the subsequent session key based on the location information of the target eNB and the random number used to generate the handover request. With this proposed scheme, the separation of forward/backward key can be achieved without reduction of the diversity gain achieved from joint transmission handover. In other words, the session key is generated by the vehicle and transmitted to the eNBs involved securely. In this study, the scheme for key generation and update was verified and analyzed based on cryptography theory and the capability of establishing a secure communication session between the vehicle and eNB without disrupting the separation of backward/forward keys in the process of handover during LTE-V2 X CoMP-JT was demonstrated. The performance evaluation shows that compared with traditional schemes, the proposed scheme can reduce the communication delay introduced by the transmission handover process by 26.4%, and also reduce channel loading between the vehicle and target eNB by almost 50%. Moreover, with the increase in the number of vehicles in the cell range, the channel loading of the base station increases linearly, which improves the applicability of the scheme in the LTE-V2 X vehicular networking scenario.
引文
[1] 中国信息通信研究院.车联网网络安全白皮书[M].北京:中国信息通信研究院,2017.China Academy of Information and Communications Technology.Cybersecurity White Paper for Vehicular Networks [M].Beijing:China Academy of Information and Communications Technology,2017.
[2] 陈超,吕植勇,付姗姗,等.国内外车路协同系统发展现状综述[J].交通信息与安全,2011,29(1):102-105,109.CHEN Chao,LU Zhi-yong,FU Shan-shan,et al.Overview of the Development in Cooperative Vehicle-Infrastructure System Home and Abroad [J].Journal of Transport Information and Safety,2011,29 (1):102-105,109.
[3] 秦严严,王昊.智能网联车辆交通流优化对交通安全的改善[J].中国公路学报,2018,31(4):202-210.QIN Yan-yan,WANG Hao.Improving Traffic Safety via Traffic Flow Optimization of Connected and Automated Vehicles [J].China Journal of Highway and Transport,2018,31 (4):202-210.
[4] SIEGEL J E,ERB D C,SARMA S E.A Survey of the Connected Vehicle Landscape:Architectures,Enabling Technologies,Applications,and Development Areas [J].IEEE Transactions on Intelligent Transportation Systems,2018,19 (8):2391-2406.
[5] 方芳,兰琛,范全放,等.几种常见车路协同通信技术的比较研究[C]// 中国智能交通协会.第十一届中国智能交通年会论文集.重庆:中国智能交通协会,2016:1023-1028.FANG Fang,LAN Chen,FAN Quan-fang,et al.Research of Cooperative Vehicle-infrastructure Communication Technology [C] // China Intelligent Transportation System Association.Proceedings of the 11th Annual Conference of China Intelligent Transportation.Chongqing:China Intelligent Transportation System Association,2016:1023-1028.
[6] CAMPOLO C,MOLINARO A,ARANITI G,et al.Better Platooning Control Toward Autonomous Driving:An LTE Device-to-device Communications Strategy that Meets Ultralow Latency Requirements [J].IEEE Vehicular Technology Magazine,2017,12 (1):30-38.
[7] UHLEMANN E.Connected-vehicles Applications are Emerging [J].IEEE Vehicular Technology Magazine,2016,11 (1):25-96.
[8] FENG M,SHE X,CHEN L,et al.Enhanced Dynamic Cell Selection with Muting Scheme for DL Comp in LTE-A [C] // IEEE.2010 IEEE 71st Vehicular Technology Conference.New York:IEEE,2010:1-5.
[9] XIA Y,FANG X,LUO W,et al.Coordinated of Multi-point and Bi-casting Joint Soft Handover Scheme for High-speed Rail [J].IET Communications,2014,8 (14):2509-2515.
[10] 林崇圣,王亚峰,金婧,等.LTE-advanced系统多点协作传输技术研究[J].现代电信科技,2010(7):38-42.LIN Chong-sheng,WANG Ya-feng,JIN Jing,et al.Survey on CoMP-JT Technology in LTE-Advanced System [J].Modern Science & Technology of Telecommunications,2010 (7):38-42.
[11] 张旭.LTE-A多点联合传输技术研究[D].北京:北京交通大学,2011.ZHANG Xu.Research on LTE-A Coordinated Multiple Points Joint Transmission Technology [D].Beijing:Beijing Jiaotong University,2011.
[12] MURCH R D,CHOI L U.A Transmit Preprocessing Technique for Multiuser MIMO Systems Using a Decomposition Approach [J].IEEE Transactions on Wireless Communications,2004,3 (1):20-24.
[13] CUI Q,WANG H,HU P,et al.Evolution of Limited-feedback Comp Systems from 4G to 5G:Comp Features and Limited-feedback Approaches [J].IEEE Vehicular Technology Magazine,2014,9 (3):94-103.
[14] FANTINI R,ZIRWAS W,THIELE L,et al.Coordinated Multi-point Transmission in 5G [M] // OSSEIRAN A,MONSERRAT J F,MARSCH P.5G Mobile and Wireless Communications Technology.Cambridge:Cambridge University Press,2016:248-276.
[15] HAN C,CHOI H.Security Analysis of Handover Key Management in 4G LTE/SAE Networks [J].IEEE Transactions on Mobile Computing,2014,13 (2):457-468.
[16] ABDRABOU M A,ELBAYOUMY A D E,EL-WANIS E A.LTE Authentication Protocol (EPS-AKA) Weaknesses Solution [C] // IEEE.2015 IEEE Seventh International Conference on Intelligent Computing and Information Systems (ICICIS).New York:IEEE,2015:434-441.
[17] KONG Q,MA M,LU R.Achieving Secure Comp Joint Transmission Handover in LTE:A Vehicular Networks [C] // IEEE.2017 IEEE 86th Vehicular Technology Conference (VTC-Fall).New York:IEEE.2017:1-5.
[18] LAI C,LI H,LU R,et al.SE-AKA:A Secure and Efficient Group Authentication and Key Agreement Protocol for LTE Networks [J].Computer Networks,2013,57 (17):3492-3510.
[19] 张平,陶运铮,张治.5G若干关键技术评述[J].通信学报,2016,37(7):15-29.ZHANG Ping,TAO Yun-zheng,ZHANG Zhi.Survey of Several Key Technologies for 5G [J].Journal on Communications,2016,37 (7):15-29.
[20] KHOSHNEVISAN M,JOSEPH V,GUPTA P,et al.5G Industrial Networks With CoMP for URLLC and Time Sensitive Network Architecture [J].IEEE Journal on Selected Areas in Communications,2019,37 (4):947-959.
[21] LIU J,AU K,MAAREF A,et al.Initial Access,Mobility,and User-centric Multi-beam Operation in 5G New Radio [J].IEEE Communications Magazine,2018,56 (3):35-41.
[22] R1-1807130,Discussion on Multi-TRP / Panel Transmission in NR [S].
[23] WANG Q,JIANG D,LIU G,et al.Coordinated Multiple Points Transmission for LTE-advanced Systems [C] // IEEE.5th International Conference on Wireless Communications,Networking and Mobile Computing.New York:IEEE,2009:1-4.
[24] KONG Q,LU R,CHEN S,et al.Achieve Secure Handover Session Key Management via Mobile Relay in LTE -advanced Networks [J].IEEE Internet of Things Journal,2017,4 (1):29-39.
[25] KONG Q,LU R,MA M,et al.A Privacy-preserving and Verifiable Querying Scheme in Vehicular fog Data Dissemination [J].IEEE Transactions on Vehicular Technology,2019,68 (2):1877-1887.
[26] LU R,LIN X,ZHU H,et al.ECPP:Efficient Conditional Privacy Preservation Protocol for Secure Vehicular Communications [C] // IEEE.The 27th Conference on Computer Communications.New York:IEEE,2008:1229-1237.
[27] LU N,CHENG N,ZHANG N,et al.Connected Vehicles:Solutions and Challenges [J].IEEE Internet of Things Journal,2014,1 (4):289-299.
[28] 王圣宝.基于双线性配对的加密方案及密钥协商协议[D].上海:上海交通大学,2008.WANG Sheng-bao.Research on Cryptosystems and Key Agreement Protocols from Bilinear Pairings [D].Shanghai:Shanghai Jiao Tong University,2008.
[29] CARO A D,IOVINO V.JPBC:Java Pairing based Cryptography [C] // IEEE.2011 IEEE Symposium on Computers and Communications (ISCC).New York:IEEE,2011:850-855.
[2] 陈超,吕植勇,付姗姗,等.国内外车路协同系统发展现状综述[J].交通信息与安全,2011,29(1):102-105,109.CHEN Chao,LU Zhi-yong,FU Shan-shan,et al.Overview of the Development in Cooperative Vehicle-Infrastructure System Home and Abroad [J].Journal of Transport Information and Safety,2011,29 (1):102-105,109.
[3] 秦严严,王昊.智能网联车辆交通流优化对交通安全的改善[J].中国公路学报,2018,31(4):202-210.QIN Yan-yan,WANG Hao.Improving Traffic Safety via Traffic Flow Optimization of Connected and Automated Vehicles [J].China Journal of Highway and Transport,2018,31 (4):202-210.
[4] SIEGEL J E,ERB D C,SARMA S E.A Survey of the Connected Vehicle Landscape:Architectures,Enabling Technologies,Applications,and Development Areas [J].IEEE Transactions on Intelligent Transportation Systems,2018,19 (8):2391-2406.
[5] 方芳,兰琛,范全放,等.几种常见车路协同通信技术的比较研究[C]// 中国智能交通协会.第十一届中国智能交通年会论文集.重庆:中国智能交通协会,2016:1023-1028.FANG Fang,LAN Chen,FAN Quan-fang,et al.Research of Cooperative Vehicle-infrastructure Communication Technology [C] // China Intelligent Transportation System Association.Proceedings of the 11th Annual Conference of China Intelligent Transportation.Chongqing:China Intelligent Transportation System Association,2016:1023-1028.
[6] CAMPOLO C,MOLINARO A,ARANITI G,et al.Better Platooning Control Toward Autonomous Driving:An LTE Device-to-device Communications Strategy that Meets Ultralow Latency Requirements [J].IEEE Vehicular Technology Magazine,2017,12 (1):30-38.
[7] UHLEMANN E.Connected-vehicles Applications are Emerging [J].IEEE Vehicular Technology Magazine,2016,11 (1):25-96.
[8] FENG M,SHE X,CHEN L,et al.Enhanced Dynamic Cell Selection with Muting Scheme for DL Comp in LTE-A [C] // IEEE.2010 IEEE 71st Vehicular Technology Conference.New York:IEEE,2010:1-5.
[9] XIA Y,FANG X,LUO W,et al.Coordinated of Multi-point and Bi-casting Joint Soft Handover Scheme for High-speed Rail [J].IET Communications,2014,8 (14):2509-2515.
[10] 林崇圣,王亚峰,金婧,等.LTE-advanced系统多点协作传输技术研究[J].现代电信科技,2010(7):38-42.LIN Chong-sheng,WANG Ya-feng,JIN Jing,et al.Survey on CoMP-JT Technology in LTE-Advanced System [J].Modern Science & Technology of Telecommunications,2010 (7):38-42.
[11] 张旭.LTE-A多点联合传输技术研究[D].北京:北京交通大学,2011.ZHANG Xu.Research on LTE-A Coordinated Multiple Points Joint Transmission Technology [D].Beijing:Beijing Jiaotong University,2011.
[12] MURCH R D,CHOI L U.A Transmit Preprocessing Technique for Multiuser MIMO Systems Using a Decomposition Approach [J].IEEE Transactions on Wireless Communications,2004,3 (1):20-24.
[13] CUI Q,WANG H,HU P,et al.Evolution of Limited-feedback Comp Systems from 4G to 5G:Comp Features and Limited-feedback Approaches [J].IEEE Vehicular Technology Magazine,2014,9 (3):94-103.
[14] FANTINI R,ZIRWAS W,THIELE L,et al.Coordinated Multi-point Transmission in 5G [M] // OSSEIRAN A,MONSERRAT J F,MARSCH P.5G Mobile and Wireless Communications Technology.Cambridge:Cambridge University Press,2016:248-276.
[15] HAN C,CHOI H.Security Analysis of Handover Key Management in 4G LTE/SAE Networks [J].IEEE Transactions on Mobile Computing,2014,13 (2):457-468.
[16] ABDRABOU M A,ELBAYOUMY A D E,EL-WANIS E A.LTE Authentication Protocol (EPS-AKA) Weaknesses Solution [C] // IEEE.2015 IEEE Seventh International Conference on Intelligent Computing and Information Systems (ICICIS).New York:IEEE,2015:434-441.
[17] KONG Q,MA M,LU R.Achieving Secure Comp Joint Transmission Handover in LTE:A Vehicular Networks [C] // IEEE.2017 IEEE 86th Vehicular Technology Conference (VTC-Fall).New York:IEEE.2017:1-5.
[18] LAI C,LI H,LU R,et al.SE-AKA:A Secure and Efficient Group Authentication and Key Agreement Protocol for LTE Networks [J].Computer Networks,2013,57 (17):3492-3510.
[19] 张平,陶运铮,张治.5G若干关键技术评述[J].通信学报,2016,37(7):15-29.ZHANG Ping,TAO Yun-zheng,ZHANG Zhi.Survey of Several Key Technologies for 5G [J].Journal on Communications,2016,37 (7):15-29.
[20] KHOSHNEVISAN M,JOSEPH V,GUPTA P,et al.5G Industrial Networks With CoMP for URLLC and Time Sensitive Network Architecture [J].IEEE Journal on Selected Areas in Communications,2019,37 (4):947-959.
[21] LIU J,AU K,MAAREF A,et al.Initial Access,Mobility,and User-centric Multi-beam Operation in 5G New Radio [J].IEEE Communications Magazine,2018,56 (3):35-41.
[22] R1-1807130,Discussion on Multi-TRP / Panel Transmission in NR [S].
[23] WANG Q,JIANG D,LIU G,et al.Coordinated Multiple Points Transmission for LTE-advanced Systems [C] // IEEE.5th International Conference on Wireless Communications,Networking and Mobile Computing.New York:IEEE,2009:1-4.
[24] KONG Q,LU R,CHEN S,et al.Achieve Secure Handover Session Key Management via Mobile Relay in LTE -advanced Networks [J].IEEE Internet of Things Journal,2017,4 (1):29-39.
[25] KONG Q,LU R,MA M,et al.A Privacy-preserving and Verifiable Querying Scheme in Vehicular fog Data Dissemination [J].IEEE Transactions on Vehicular Technology,2019,68 (2):1877-1887.
[26] LU R,LIN X,ZHU H,et al.ECPP:Efficient Conditional Privacy Preservation Protocol for Secure Vehicular Communications [C] // IEEE.The 27th Conference on Computer Communications.New York:IEEE,2008:1229-1237.
[27] LU N,CHENG N,ZHANG N,et al.Connected Vehicles:Solutions and Challenges [J].IEEE Internet of Things Journal,2014,1 (4):289-299.
[28] 王圣宝.基于双线性配对的加密方案及密钥协商协议[D].上海:上海交通大学,2008.WANG Sheng-bao.Research on Cryptosystems and Key Agreement Protocols from Bilinear Pairings [D].Shanghai:Shanghai Jiao Tong University,2008.
[29] CARO A D,IOVINO V.JPBC:Java Pairing based Cryptography [C] // IEEE.2011 IEEE Symposium on Computers and Communications (ISCC).New York:IEEE,2011:850-855.