论文部分内容阅读
针对低功耗蓝牙安全简单配对协议易受到窃听攻击和中间人攻击的问题,将哈希链引入低功耗蓝牙配对过程,提出了一种基于哈希链的低功耗蓝牙密钥协商方案。该方案利用哈希链的单向性和抗碰撞性实现了设备间的双向认证及链路密钥协商,同时设计哈希链更新机制,防止哈希链节点值的重复使用所带来的安全威胁。BAN逻辑安全性分析和实验结果表明,方案具有较好的安全特性,能够有效抵御窃听、中间人等攻击,同时具有较小的存储和计算开销。
In order to solve the problem of low-power Bluetooth simple pairing protocol vulnerable to eavesdropping attacks and man-in-the-middle attacks, the hash chain is introduced into the low power Bluetooth pairing process and a hash chain based Bluetooth key agreement scheme is proposed. In this scheme, two-way authentication and link key negotiation between devices are realized by utilizing unidirectional and anti-collision of hash chains. Meanwhile, a hash chain update mechanism is designed to prevent the reuse of hash chain nodes. Threats. BAN logical security analysis and experimental results show that the scheme has better security features, which can effectively resist eavesdropping, middleman attacks and the like, and has less storage and computation overhead.