通信学报2025,Vol.46Issue(5):47-64,18.DOI:10.11959/j.issn.1000-436x.2025092
基于SM2异步远程密钥生成的工业互联网账户恢复协议
SM2 asynchronous remote key generation based account recovery protocol in industrial Internet
摘要
Abstract
The openness network environment of the industrial Internet may lead to security risks such as identity forgery and data leakage,making it crucial to achieve effective authentication and ensure account security.However,existing in-dustrial Internet authentication protocols mostly focus on the authentication phase and often overlooking the issue of ac-count recovery in cases of lost authenticators.Moreover,there are explicit national requirements for autonomy and con-trol in cryptographic applications.Therefore,an account recovery protocol based on SM2 asynchronous remote key gen-eration(ARKG)was proposed.Firstly,the SM2 blind key encapsulation mechanism and fuzzy extractor were used to de-sign the ARKG algorithms,which bound the private key to the user's biometric features and enhances the security of de-rived private keys.Based on this ARKG construction,an industrial Internet account recovery protocol was proposed,achieving mutual authentication between the user and the server in the recovery phase and effectively addressing the is-sue of lost backup authenticators.Security analysis and experimental results demonstrate that the proposed protocol meets the high security and usability requirements of the industrial Internet.关键词
工业互联网/异步远程密钥生成/账户恢复/SM2Key words
industrial Internet/ARKG/account recovery/SM2分类
电子信息工程引用本文复制引用
肖浩,杨雪,姜奇,余增文,李兴华,马建峰..基于SM2异步远程密钥生成的工业互联网账户恢复协议[J].通信学报,2025,46(5):47-64,18.基金项目
国家自然科学基金资助项目(No.62472337,No.62072352,No.62125205,No.62372350) (No.62472337,No.62072352,No.62125205,No.62372350)
陕西省杰出青年科学基金资助项目(No.2025JC-JCQN-084)The National Natural Science Foundation of China(No.62472337,No.62072352,No.62125205,No.62372350),The Natural Science Basic Research Program of Shaanxi Province(No.2025JC-JCQN-084) (No.2025JC-JCQN-084)
