计算机应用 ›› 2018, Vol. 38 ›› Issue (8): 2261-2266.DOI: 10.11772/j.issn.1001-9081.2018010272

• 网络空间安全 • 上一篇    下一篇

铁路桥梁监测中基于短签名方案的数据传输协议

左黎明1,2, 胡凯雨1,2, 张梦丽1,2, 陈兰兰1,2   

  1. 1. 华东交通大学 理学院, 南昌 330013;
    2. 华东交通大学 系统工程与密码学研究所, 南昌 330013
  • 收稿日期:2018-01-31 修回日期:2018-04-06 出版日期:2018-08-10 发布日期:2018-08-11
  • 通讯作者: 左黎明
  • 作者简介:左黎明(1981-),男,江西鹰潭人,副教授,硕士,CCF会员,主要研究方向:信息安全;胡凯雨(1995-),男,江西抚州人,硕士研究生,主要研究方向:信息安全;张梦丽(1992-),女,安徽亳州人,硕士研究生,主要研究方向:信息安全;陈兰兰(1995-),女,江西九江人,硕士研究生,主要研究方向:信息安全。
  • 基金资助:
    国家自然科学基金资助项目(11761033);江西省教育厅科技项目(GJJ170386);江西省研究生创新专项资金资助项目(YC2017-S257)。

Data transmission protocol based on short signature scheme for railway bridge monitoring

ZUO Liming1,2, HU Kaiyu1,2, ZHANG Mengli1,2, CHEN Lanlan1,2   

  1. 1. School of Science, East China Jiaotong University, Nanchang Jiangxi 330013, China;
    2. Institute of Systems Engineering and Cryptography, East China Jiaotong University, Nanchang Jiangxi 330013, China
  • Received:2018-01-31 Revised:2018-04-06 Online:2018-08-10 Published:2018-08-11
  • Supported by:
    This work is partially supported by the National Natural Science Foundation of China (11761033), the Science and Technology Project of Jiangxi Province Department of Education (GJJ170386), the Innovation Fund for Graduate Students of Jiangxi Province (YC2017-S257).

摘要: 针对开放式互联网环境下铁路桥梁监测系统在数据交互过程中存在的信息泄露与篡改等网络安全问题,提出一种铁路桥梁监测中基于短签名方案的数据传输协议。首先,在Boneh短签名基础上构造了基于身份的短签名方案;然后,在随机预言机模型和逆计算性Diffie-Hellman问题(Inv-CDHP)假设下证明了该方案的安全性,并进一步把此方案运用在桥梁监测数据传输协议中;最后,给出了方案实现的关键代码并与另几种方案进行了实验比较。实验结果和分析表明,新方案的平均耗时与经典的Boneh方案接近,但与Fangguo Zhang方案和Leyou Zhang方案相比,平均耗时分别减少了6%和22%。因此,该方案在签名长度和效率方面较有优势,能有效解决监测数据缺乏完整性保护和身份可靠性认证的问题。

关键词: 铁路桥梁, 传输协议, 数据监测, 基于身份的签名, 短签名, 随机预言机模型

Abstract: Aiming at the problems of network security such as information disclosure and tampering in the process of information exchange for railway bridge monitoring systems under open Internet environment, a data transmission protocol based on short signature scheme was proposed for railway bridge monitoring. Firstly, an identity-based short signature scheme was designed on the basis of Boneh's short signature. Then the scheme was proved to be safe under the random oracle model and the Inverse Computational Diffie-Hellman Problem (Inv-CDHP), and it was further applied to the data transmission protocol for railway bridge monitoring. Finally, the key code of the scheme was given and compared with several schemes. The experimental results and analysis show that the average time consumption of the proposed scheme is close to the classical Boneh's scheme, but 6% and 22% lower than that of Fangguo Zhang's scheme and Leyou Zhang's scheme. Therefore, the proposed scheme has more advantages in terms of signature length and efficiency, and can effectively solve the problem of lack of integrity protection and identity reliability authentication of monitoring data.

Key words: railway bridge, transmission protocol, data monitoring, identity-based signature, short signature, random oracle model

中图分类号: