To ensure the security and privacy of patients' health data in wireless body area network (WBAN), communi-cation parties must be mutual authenticated. Now some bilinear pairings led to a larger computation cost for users and tree structure revocation would lead to larger user storage cost. In order to achieve revocation and reduce the cost of the user side, a novel revocable certificate less remote anonymous authentication protocol for WBAN was proposed by using elliptic curve cryptography and revoke algorithm that could revoke users by updating their time-private-keys. Security requirements including anonymity, mutual authentication and session key establishment were satisfied in proposed scheme. Compared with the existing schemes, the experimental analysis shows that the computation cost and storage cost of the authentication protocol are greatly reduced, which is more suitable for resource-constrained WBAN. Security analysis also shows that the protocol is secure in the random oracle model.%为了保证无线体域网(WBAN, wireless body area network)中病人生理数据的安全和隐私,通信双方必须进行相互认证.现有的一些方案使用双线性对导致用户计算代价较大,其采用树形结构进行撤销会导致用户的存储代价较大.为了实现撤销同时降低用户端的代价,构造了基于椭圆曲线的可撤销无证书远程匿名认证协议,基于即时更新时间密钥技术进行撤销.协议满足匿名性,相互认证和会话密钥建立等安全需求.与现有方案相比,实验分析表明认证协议用户端的计算代价和存储代价大幅降低,更适用于资源受限的无线体域网.安全性分析证实了协议在随机预言模型下是安全的.
展开▼
