Abstract: According to the insufficiency of the traditional Internet Of Things (IOT) on privacy protection, an improved enquiry system of IOT-Trusted Anonymous Object Naming Service (TA-ONS) was proposed with trusted computing technology, adding anonymous certification to the traditional ONS enquiry system of IOT, authenticating the identities and platform creditability of local ONS servers (L-ONS), and giving temporary certificates to validated L-ONS. Within the authentication period, L-ONS could apply for more than once enquiry services from TA-ONS with the certificate. TA-ONS only provided enquiry services to those authorized and trusted L-ONS, prevented the illegal L-ONS to enquire information of things. The universally composable security model was used as safety check. The analysis shows that the new enquiry system model of IOT is safe, anonymous, trusted and efficient.

Key words: Trusted Computing, Internet of Things, Anonymous Authentication, Universally Composable Security

摘要： 针对传统物联网在隐私保护方面存在的缺陷，综合可信计算技术提出改进的物联网查询体系——可信匿名的物联网查询机制(TA-ONS)，在传统物联网ONS查询中加入匿名认证过程，对本地ONS服务器(L-ONS)的身份合法性及平台可信性进行验证，为通过验证的L-ONS签发临时证书，在证书的有效期内L-ONS可持临时证书多次向TA-ONS申请查询服务，TA-ONS仅对授权且可信的L-ONS提供查询服务，防止非法的L-ONS查询物品信息，使用通用可组合安全模型对TA-ONS进行安全性证明。分析表明该模型具有安全性、匿名性、可信性和高效性等特点。

关键词: 可信计算, 物联网, 匿名认证, 通用可组合安全