An SSL-PUF Based Access Authentication and Key Distribution Scheme for the Space–Air–Ground Integrated Network

The Space–Air–Ground Integrated Network (SAGIN) expands cyberspace greatly. Dynamic network architecture, complex communication links, limited resources, and diverse environments make SAGIN’s authentication and key distribution much more difficult. Public key cryptography is a better choice for term...

Descripción completa

Detalles Bibliográficos
Autores principales: Xu, Liwei, Wu, Han, Xie, Jianguo, Yuan, Qiong, Sun, Ying, Shi, Guozhen, Luo, Shoushan
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2023
Materias:
Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10217058/
https://www.ncbi.nlm.nih.gov/pubmed/37238513
http://dx.doi.org/10.3390/e25050760
_version_ 1785048444915679232
author Xu, Liwei
Wu, Han
Xie, Jianguo
Yuan, Qiong
Sun, Ying
Shi, Guozhen
Luo, Shoushan
author_facet Xu, Liwei
Wu, Han
Xie, Jianguo
Yuan, Qiong
Sun, Ying
Shi, Guozhen
Luo, Shoushan
author_sort Xu, Liwei
collection PubMed
description The Space–Air–Ground Integrated Network (SAGIN) expands cyberspace greatly. Dynamic network architecture, complex communication links, limited resources, and diverse environments make SAGIN’s authentication and key distribution much more difficult. Public key cryptography is a better choice for terminals to access SAGIN dynamically, but it is time-consuming. The semiconductor superlattice (SSL) is a strong Physical Unclonable Function (PUF) to be the hardware root of security, and the matched SSL pairs can achieve full entropy key distribution through an insecure public channel. Thus, an access authentication and key distribution scheme is proposed. The inherent security of SSL makes the authentication and key distribution spontaneously achieved without a key management burden and solves the assumption that excellent performance is based on pre-shared symmetric keys. The proposed scheme achieves the intended authentication, confidentiality, integrity, and forward security, which can defend against masquerade attacks, replay attacks, and man-in-the-middle attacks. The formal security analysis substantiates the security goal. The performance evaluation results confirm that the proposed protocols have an obvious advantage over the elliptic curve or bilinear pairings-based protocols. Compared with the protocols based on the pre-distributed symmetric key, our scheme shows unconditional security and dynamic key management with the same level performance.
format Online
Article
Text
id pubmed-10217058
institution National Center for Biotechnology Information
language English
publishDate 2023
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-102170582023-05-27 An SSL-PUF Based Access Authentication and Key Distribution Scheme for the Space–Air–Ground Integrated Network Xu, Liwei Wu, Han Xie, Jianguo Yuan, Qiong Sun, Ying Shi, Guozhen Luo, Shoushan Entropy (Basel) Article The Space–Air–Ground Integrated Network (SAGIN) expands cyberspace greatly. Dynamic network architecture, complex communication links, limited resources, and diverse environments make SAGIN’s authentication and key distribution much more difficult. Public key cryptography is a better choice for terminals to access SAGIN dynamically, but it is time-consuming. The semiconductor superlattice (SSL) is a strong Physical Unclonable Function (PUF) to be the hardware root of security, and the matched SSL pairs can achieve full entropy key distribution through an insecure public channel. Thus, an access authentication and key distribution scheme is proposed. The inherent security of SSL makes the authentication and key distribution spontaneously achieved without a key management burden and solves the assumption that excellent performance is based on pre-shared symmetric keys. The proposed scheme achieves the intended authentication, confidentiality, integrity, and forward security, which can defend against masquerade attacks, replay attacks, and man-in-the-middle attacks. The formal security analysis substantiates the security goal. The performance evaluation results confirm that the proposed protocols have an obvious advantage over the elliptic curve or bilinear pairings-based protocols. Compared with the protocols based on the pre-distributed symmetric key, our scheme shows unconditional security and dynamic key management with the same level performance. MDPI 2023-05-06 /pmc/articles/PMC10217058/ /pubmed/37238513 http://dx.doi.org/10.3390/e25050760 Text en © 2023 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Xu, Liwei
Wu, Han
Xie, Jianguo
Yuan, Qiong
Sun, Ying
Shi, Guozhen
Luo, Shoushan
An SSL-PUF Based Access Authentication and Key Distribution Scheme for the Space–Air–Ground Integrated Network
title An SSL-PUF Based Access Authentication and Key Distribution Scheme for the Space–Air–Ground Integrated Network
title_full An SSL-PUF Based Access Authentication and Key Distribution Scheme for the Space–Air–Ground Integrated Network
title_fullStr An SSL-PUF Based Access Authentication and Key Distribution Scheme for the Space–Air–Ground Integrated Network
title_full_unstemmed An SSL-PUF Based Access Authentication and Key Distribution Scheme for the Space–Air–Ground Integrated Network
title_short An SSL-PUF Based Access Authentication and Key Distribution Scheme for the Space–Air–Ground Integrated Network
title_sort ssl-puf based access authentication and key distribution scheme for the space–air–ground integrated network
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10217058/
https://www.ncbi.nlm.nih.gov/pubmed/37238513
http://dx.doi.org/10.3390/e25050760
work_keys_str_mv AT xuliwei ansslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT wuhan ansslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT xiejianguo ansslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT yuanqiong ansslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT sunying ansslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT shiguozhen ansslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT luoshoushan ansslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT xuliwei sslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT wuhan sslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT xiejianguo sslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT yuanqiong sslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT sunying sslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT shiguozhen sslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork
AT luoshoushan sslpufbasedaccessauthenticationandkeydistributionschemeforthespaceairgroundintegratednetwork

Ejemplares similares