关键词: 物联网, 轻量级密钥管理系统, 密钥体系, 对称密钥, 密钥分散

Abstract: Abstract The rapid development of IoT affects and changes people's lives and way of working. At the same time, the realistic demand also promotes the rapid development of the technology of IoT. For the characteristics of high capacity, complex network/terminal equipment, low power consumption and limited computing power of terminal devices of IoT, lightweight and miniaturization have become the basic requirements for designing the IoT security system and key management scheme.For the design of the lightweight key management scheme oriented to IoT, the traditional schemes for implementing identity authentication and key agreement based on digital certificates and PKI systems are not suitable under the application scenarios of IoT. Due to the complex interactive process and the authentication mode of digital certificate exchange, a lot of computing and network resources will be consumed. Based on this, under the circumstance of ensuring the security of the system, orienting to lightweight application scenario of IoT and based on the national cryptographic algorithm, a full lifecycle management scheme is implemented. Using symmetric algorithm keys to achieve terminal device authentication, session key agreement, data encryption/decryption services, and using asymmetric algorithm keys for key exchange and import protection. And the performance and function requirements of key management in IoT environment are well-suited to meet.

Key words: Internet of things, lite key manager system, key system, symmetric key, key dispersion