Certificatebased Designated Verifier Aggregate Authentication Scheme  in the Internet of Vehicles

Journal of Information Security Reserach ›› 2026, Vol. 12 ›› Issue (4): 376-.

Previous Articles Next Articles

Certificatebased Designated Verifier Aggregate Authentication Scheme in the Internet of Vehicles

Xia Xuezhi1, Lü Wenjie2, Zhang Mingwu3, and Xia Zhe1,4

1(School of Computer and Artificial Intelligence, Wuhan University of Technology, Wuhan 430070)
2(Zhejiang Branch, China Telecom Co. Ltd., Hangzhou 310001)
3(School of Computer Science, Hubei University of Technology, Wuhan 430068)
4(Hubei Provincial Key Laboratory of Transportation Internet of Things Technology(Wuhan University of Technology), Wuhan 430070)

Online:2026-04-07 Published:2026-04-07

车联网中基于证书的指定验证者聚合认证方案

夏学志1吕文杰2张明武3夏喆1,4

1(武汉理工大学计算机与人工智能学院武汉430070)
2(中国电信股份有限公司浙江分公司杭州310001)
3(湖北工业大学计算机学院武汉430068)
4(交通物联网技术湖北省重点实验室(武汉理工大学)武汉430070)

通讯作者: 吕文杰硕士，高级工程师.主要研究方向为网络攻防与信息安全. lwj.zj@chinatelecom.cn
作者简介:夏学志硕士.主要研究方向为公钥密码学、隐私保护与身份认证. shelrex@163.com 吕文杰硕士，高级工程师.主要研究方向为网络攻防与信息安全. lwj.zj@chinatelecom.cn 张明武博士，教授.主要研究方向为人工智能安全、数字经济与区块链. hbutzhang@gmail.com 夏喆博士，副教授.主要研究方向为分布式密码学协议、可证明安全理论. xiazhe@whut.edu.cn
基金资助:
国家重点研发计划项目(2022YFB3104001)；湖北省重大科技专项(2024BAA011)；交通物联网技术湖北省重点实验室开放基金项目(WHUTIOT006)

Abstract

Abstract: The Internet of vehicles (IoV) significantly enhances traffic safety and travel efficiency, however, its open network environment and structural features expose it to security threats such as identity forgery, privacy leakage, and malicious attacks. A key challenge is achieving efficient and secure authentication under resourceconstrained scenarios while ensuring controllable verification rights and preserving user privacy. This paper proposes a certificatebased designated verifier aggregate authentication scheme, which enables efficient vehicletovehicle authentication and addresses both verifier authorization control and privacy risks in IoV communications by incorporating designated verifier signatures with conditional privacypreserving mechanisms. Formal security proofs demonstrat that the scheme is reducible to the CDH (computational DiffieHellman) problem in the random oracle model and achieves existential unforgeability under adaptive chosenmessage attacks. Experimental evaluation confirms its efficiency and practicality, making it suitable for resourceconstrained IoV environments.

Key words: designated verifier signature, identity authentication, aggregate signature, certificatebased cryptography, Internet of vehicles

摘要： 车联网显著提高了交通安全性与出行效率，但是开放的网络环境与结构特点使其面临身份伪造、隐私泄露、恶意攻击等安全威胁.如何在资源受限的场景下实现高效安全的身份认证，同时兼顾验证权限可控和用户隐私保护，成为车联网安全领域亟待解决的关键问题.提出一种基于证书的指定验证者聚合认证方案，在实现车辆之间的高效身份认证的同时，通过引入指定验证者签名和条件隐私保护机制，解决车联网通信中存在的验证权限控制问题与隐私泄露风险.完整的安全性证明表明该方案在随机预言机模型下可规约于CDH(computational DiffieHellman)问题，满足自适应选择消息攻击下的存在不可伪造性.实验分析验证了该方案的高效性与实用性，适用于资源受限的车联网应用环境.

关键词: 指定验证者签名, 身份认证, 聚合签名, 基于证书密码学, 车联网

CLC Number:

TP309.2

夏学志, 吕文杰, 张明武, 夏喆, . 车联网中基于证书的指定验证者聚合认证方案[J]. 信息安全研究, 2026, 12(4): 376-.

References

［1］Wang Liangliang, Xu Jiangwei, Qin Baodong, et al. An efficient fuzzy certificateless signaturebased authentication scheme using anonymous biometric identities for VANETs［J］. IEEE Trans on Dependable and Secure Computing, 2024, 22(1): 292307［2］Zhang Jing, Su Shuangshuang, Zhong Hong, et al. Identitybased broadcast proxy reencryption for flexible data sharing in VANETs［J］. IEEE Trans on Information Forensics and Security, 2023, 18: 48304842［3］Yang Xiaodong, Li Songyu, Yang Lan, et al. Efficient and securityenhanced certificateless aggregate signaturebased authentication scheme with conditional privacy preservation for VANETs［J］. IEEE Trans on Intelligent Transportation Systems, 2024, 25(9): 1225612268［4］徐元杰, 吴建华, 龚一轩. 简析车联网网络安全［J］.信息安全研究, 2024, 10(E2): 139143［5］Gentry C. Certificatebased encryption and the certificate revocation problem［C］ Proc of Int Conf on the Theory and Applications of Cryptographic Techniques. Berlin: Springer, 2003: 272293［6］Kang B G, Park J H, Hahn S G. A certificatebased signature scheme［C］ Proc of Cryptographers’ Track at the RSA Conference. Berlin: Springer, 2004: 99111［7］Li Jiguo, Huang Xinyi, Mu Yi, et al. Certificatebased signature: Security model and efficient construction［C］ Proc of Public Key Infrastructure: 4th European PKI Workshop: Theory and Practice(EuroPKI 2007). Berlin: Springer, 2007: 110125［8］Liu Min, Wang Liangliang, Zhang Kai, et al. A pairingfree certificatebased keyinsulated aggregate signature scheme for wireless medical sensor networks［J］. PeertoPeer Networking and Applications, 2024, 17(2): 685700［9］安浩杨, 何德彪, 包子健, 等. 一种基于证书的数字签名方案［J］. 信息网络安全, 2023, 23(3): 1321［10］Verma G K, Kumar N, Gope P, et al. SCBS: A short certificatebased signature scheme with efficient aggregation for industrialInternetofthings environment［J］. IEEE Internet of Things Journal, 2021, 8(11): 93059316［11］Jakobsson M, Sako K, Impagliazzo R. Designated verifier proofs and their applications［C］ Proc of Int Conf on the Theory and Applications of Cryptographic Techniques. Berlin: Springer, 1996: 143154［12］Lipmaa H, Wang Guiling, Bao Feng. Designated verifier signature schemes: Attacks, new security notions and a new construction［G］ LNCS 3580: Proc of the 32nd Int Colloquium on Automata, Languages and Programming. Berlin: Springer, 2005: 459471［13］Shen Limin, Ma Jiafeng, Miao Yinbin, et al. Provably secure certificateless aggregate signature scheme with designated verifier in an improved security model［J］. IET Information Security, 2019, 13(3): 167173［14］Li Tian, Wang Huaqun, He Debiao, et al. Designatedverifier aggregate signature scheme with sensitive data privacy protection for permissioned blockchainassisted IIoT［J］. IEEE Trans on Information Forensics and Security, 2023, 18: 46404651［15］Deng Lunzhi, Wang Tao, Feng Shuai, et al. Secure identitybased designated verifier anonymous aggregate signature scheme suitable for smart grids［J］. IEEE Internet of Things Journal, 2022, 10(1): 5765［16］李继国, 方淳. 基于SM9的指定验证者聚合签名方案［J］. 网络与信息安全学报, 2024, 10(4): 6371

[1]	. PUFbased Identity Authentication for Internet of Things Against Machine Learning Attacks in Zerotrust Architecture#br# [J]. Journal of Information Security Reserach, 2026, 12(1): 33-.
[2]	. Research on Lightweight Implicit Certificate Scheme for #br# Resourceconstrained Devices in Distribution Networks#br# #br# [J]. Journal of Information Security Reserach, 2025, 11(9): 845-.
[3]	. Lightweighted Mutual Authentication and Key Agreement in V2N IoV [J]. Journal of Information Security Reserach, 2025, 11(8): 753-.
[4]	. A PUFbased Identity Authentication and Key Negotiation Protocol for Telemedicine [J]. Journal of Information Security Reserach, 2025, 11(7): 626-.
[5]	. Research and Implementation of a Blockchainbased Biometric #br# Information Sharing Scheme#br# [J]. Journal of Information Security Reserach, 2025, 11(5): 402-.
[6]	. Group Key Management Mechanism for Internet of Vehicles [J]. Journal of Information Security Reserach, 2025, 11(2): 139-.
[7]	. Research on Location Attack Detection of VANET Based on Incremental Learning [J]. Journal of Information Security Reserach, 2024, 10(3): 277-.
[8]	. Research on Identity Authentication Technology Based on Block Chain and PKI [J]. Journal of Information Security Reserach, 2024, 10(2): 148-.
[9]	. Research on Locally Verifiable Aggregate Signature Algorithm Based on SM2 [J]. Journal of Information Security Reserach, 2024, 10(2): 156-.
[10]	. Security Protection and Research of ModbusTCP Protocol Based on National Secret Algorithm [J]. Journal of Information Security Reserach, 2024, 10(1): 20-.
[11]	. Research on the Trusted Identity Scheme of Internet of Vehicles Based on Blockchain Oracle [J]. Journal of Information Security Reserach, 2023, 9(2): 120-.
[12]	. Research on Data Sharing Management Based on Attributebased Encryption#br# #br# [J]. Journal of Information Security Reserach, 2023, 9(11): 1061-.
[13]	. [J]. Journal of Information Security Reserach, 2022, 8(9): 863-.
[14]	. [J]. Journal of Information Security Reserach, 2022, 8(6): 545-.
[15]	. [J]. Journal of Information Security Reserach, 2022, 8(6): 554-.

Certificatebased Designated Verifier Aggregate Authentication Scheme in the Internet of Vehicles

车联网中基于证书的指定验证者聚合认证方案

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics