Page 331 - 《软件学报》2021年第8期

P. 331

软件学报 ISSN 1000-9825, CODEN RUXUEW E-mail: jos@iscas.ac.cn
Journal of Software,2021,32(8):2613−2628 [doi: 10.13328/j.cnki.jos.006033] http://www.jos.org.cn
©中国科学院软件研究所版权所有. Tel: +86-10-62562563

∗
基于联盟链的物联网跨域认证

3
1
2
1
魏欣 , 王心妍 , 于卓 , 郭少勇 , 邱雪松 1
1
(网络与交换技术国家重点实验室(北京邮电大学),北京 100876)
2
(国网河南省电力公司,河南郑州 450000)
3 (北京中电普华信息技术有限公司,北京 100192)
通讯作者: 郭少勇, E-mail: syguo@bupt.edu.cn

摘要: 针对物联网场景下跨信任域的信息交换需求,结合区块链与边缘计算思想,构建了一种适应于物联网认
证的架构.首先,基于联盟链技术设计了适应于物联网跨域认证的架构及流程,构建了安全的跨域信息交互环境;随
后引入边缘网关,以屏蔽物联网的底层异构性,并设计了基于网关的跨域认证流程,增强了物联网认证中的隐私保
护;最后,针对设计协议的安全性进行了分析,证明其可抵抗物联网场景下的常见攻击.实验结果表明,该设计方案在
计算和通信开销上优于传统方案,可用于物联网.
关键词: 区块链;物联网;联盟链;多信任域;认证
中图法分类号: TP393

中文引用格式: 魏欣,王心妍,于卓,郭少勇,邱雪松.基于联盟链的物联网跨域认证.软件学报,2021,32(8):2613−2628. http://
www.jos.org.cn/1000-9825/6033.htm
英文引用格式: Wei X, Wang XY, Yu Z, Guo SY, Qiu XS. Cross domain authentication for IoT based on consortium blockchain.
Ruan Jian Xue Bao/Journal of Software, 2021,32(8):2613−2628 (in Chinese). http://www.jos.org.cn/1000-9825/6033.htm
Cross Domain Authentication for IoT Based on Consortium Blockchain

1
2
3
1
1
WEI Xin , WANG Xin-Yan , YU Zhuo , GUO Shao-Yong , QIU Xue-Song
1
(State Key Laboratory of Networking and Switching Technology (Beijing University of Posts and Telecommunications), Beijing 100876,
China)
2
(State Grid Henan Electric Power Company, Zhengzhou 450000, China)
3
(Beijing China-power Information Technology Co. Ltd., Beijing 100192, China)
Abstract: Aiming at information exchange requirements of cross-trust domains under IoT scenario, this paper constructs an
authentication architecture which suits for IoT with blockchain and edge computing. Firstly, based on consortium chain, the paper designs
architecture and process for cross-domain authentication in IoT, creates secure cross-domain information exchange environment for IoT.
In addition, edge gateway is introduced to shield heterogeneity and sensitive information of things. Based on edge gateway，authentication
protocol for cross-trust domain authentication is designed, which strengthens privacy preserving in IoT. Finally，performance analysis
proves that the design could resist common attacks in IoT scenario. Simulation results prove that the design has better performance than
traditional way in both computation consumption and communication consumption, can be used for IoT.
Key words: blockchain; Internet of things; consortium blockchain; cross-trust domain; authentication

随着网络技术的高速发展和低成本智能设备的大规模部署,物联网取得了飞速的发展,对跨系统之间的信
息交互提出了需求.传统物联网采用封闭建设模式,不同系统之间存在认证模式不同、证书形式不同等差异,从

∗ 基金项目: 国家重点研发计划(2019YFB2102302); 国家自然科学基金(61702048)
Foundation item: National Key Research and Development Program of China (2019YFB2102302); National Natural Science
Foundation of China (61702048)
收稿时间: 2019-11-12; 修改时间: 2020-01-06, 2020-02-26; 采用时间: 2020-03-16; jos 在线出版时间: 2021-04-20

326 327 328 329 330 331 332 333 334 335 336