基于哈希链的BLE密钥协商方案设计

系统仿真学报 ›› 2016, Vol. 28 ›› Issue (6): 1412-1419.

基于哈希链的BLE密钥协商方案设计

黄艺波, 黄一才, 郁滨

解放军信息工程大学,河南郑州 450004

收稿日期:2015-05-02 修回日期:2015-07-21 出版日期:2016-06-08 发布日期:2020-06-08
作者简介:黄艺波(1990-),男,河南洛阳,硕士生,研究方向为蓝牙、信息安全技术;黄一才(1985-),男,土家,湖北巴东,硕士,讲师,研究方向为蓝牙、信息安全技术等;郁滨(1964-),男,河南郑州,博士,教授,博导,研究方向为信息安全、无线网络安全技术、视觉密码等。

Design of BLE Key Agreement Scheme Based on Hash Chain

Huang Yibo, Huang Yicai, Yu Bin

PLA Information Engineering University, Zhengzhou 450004, China

Received:2015-05-02 Revised:2015-07-21 Online:2016-06-08 Published:2020-06-08

摘要/Abstract

摘要： 针对低功耗蓝牙安全简单配对协议易受到窃听攻击和中间人攻击的问题,将哈希链引入低功耗蓝牙配对过程,提出了一种基于哈希链的低功耗蓝牙密钥协商方案。该方案利用哈希链的单向性和抗碰撞性实现了设备间的双向认证及链路密钥协商,同时设计哈希链更新机制,防止哈希链节点值的重复使用所带来的安全威胁。BAN逻辑安全性分析和实验结果表明,方案具有较好的安全特性,能够有效抵御窃听、中间人等攻击,同时具有较小的存储和计算开销。

关键词: 低功耗蓝牙, 哈希链, 密钥协商, 窃听攻击, 中间人攻击

Abstract: Aiming at the problem that BLE Secure Simple Pairing protocol is vulnerable to eavesdropping and man-in-the-middle attacks, a BLE key agreement scheme based on hash chain was proposed. The scheme realized mutual authentication and link key agreement applying the unidirectivity and crashworthiness of hash chain. Update mechanism of the hash chain was designed to prevent from reuse of hash chain node values. The security analysis of BAN logic and experiment results show that, the scheme can effectively resist eavesdropping and man-in-the-middle attacks. Meanwhile, it has low storage and computation overheads.

Key words: BLE, hash chain, key agreement, eavesdropping attack, man-in-the-middle attack

中图分类号:

TP309.1

黄艺波, 黄一才, 郁滨. 基于哈希链的BLE密钥协商方案设计[J]. 系统仿真学报, 2016, 28(6): 1412-1419.

Huang Yibo, Huang Yicai, Yu Bin. Design of BLE Key Agreement Scheme Based on Hash Chain[J]. Journal of System Simulation, 2016, 28(6): 1412-1419.

参考文献

[1] 陈灿峰. 低功耗蓝牙技术原理与应用 [M]. 北京: 北京航空航天大学出版社, 2013.
[2] Bluetooth Special Interest Group.Bluetooth SIG Specification of the Bluetooth system: core package version 4.0 [EB/OL]. (2009-07-28) [2015-04-20]. http://www.bluetooth.org. 2009.
[3] 魏德龄. 蓝牙4.2欲让物联网成真, 低功耗成核心优势 [EB/OL]. (2015-01-23) [2015-04-21]. http://www.cctime.com/index.asp. 2015.
[4] Heiner Perrey, Osman Ugus, Dirk Westhoff.Security enhancement for bluetooth low energy with Merkle's puzzle[C]// Proceedings of Mobile Computing and Communications Review. New York: ACM, 2011: 45-46.
[5] Iman Almomani, Mohammed Al-Saruri, Mousa Tawfiq AL-Akhras. Secure public key exchange against man-in-the-middle attack during secure simple pairing (SSP) in Bluetooth4.0[J]. World Applied Sciences Journal (S1818-4952), 2011, 13(4): 769-780.
[6] Keijo Haataja, Pekka Toivanen.Two practical man-in-the-middle attacks on Bluetooth secure simple pairing and countermeasures[J]. IEEE Transactions on Wireless Communications (S1536-1276), 2010, 9(1): 384-392.
[7] Andrew Y Lindell.Attacks on the pairing protocol of Bluetooth v2.1[M]. Las Vegas, Nevada, USA: Black Hat, 2008.
[8] Jani Suomalainen, Jukka Valkonen, N Asokan. Security associations in personal networks: A comparative analysis[C]// 4th European Workshop, ESAS 2007, Cambridge, UK, Finland: NOKIA Research Center, 2007: 1-18.
[9] Bin Yu, Haiyan Li.Research and Design of one Key Agreement Scheme in Bluetooth[C]// Computer Science and Software Engineering, 2008 International Conference on. Wuhan: IEEE, 2008: 665-668.
[10] Diallo, Al-Khateeb, Wajdi Fawzi, et al. A Secure Authentication Scheme for Bluetooth Connection[C]// Computer and Communication Engineering (ICCCE). Kuala Lumpur: IEEE, 2014: 60-63.
[11] 施荣华, 翁丽萍, 王国才. 基于单向哈希链的网络密钥协商协议[J]. 湖南大学学报(自然科学版), 2011, 38(3): 77-81.
[12] 张小彬, 韩继红, 王亚弟, 等. 基于分簇的Ad Hoc网络密钥协商协议[J]. 计算机工程, 2010, 36(1): 170-173.