Abstract: In order to solve excessive consumption of computation and storage due to sensor nodes move in WSN frequently, a new lightweight authenticated key management protocol based on ECC is proposed. The mutual authentication and agreement on a session key could be realized between users, or between user and network server in WSN. This protocol adopts ECC techniques to consult session key and AES symmetrical encryption technology to achieve confidentiality. Compared with traditional protocol, this protocol could provide greater security with fewer bits and reduce the requirement in computation and storage. The protocol is proved to be a secure authenticated key agreement in ID-BIM model. Results show that it provides perfect forward/back secrecy and PKG forward secrecy.

Key words: wireless sensor networks, ID-BIM, ECDH, key agreement, security

摘要： 为解决无线传感器网络密钥管理与认证协议设计中由于节点频繁移动所带来的计算量、存储量等资源消耗过大问题，提出了一种基于ECC的轻量级认证密钥协商协议。该协议主要用于网络中任意用户节点之间，以及用户节点与网络之间的双向认证和会话密钥的协商。方案采用ECC进行会话密钥协商，结合AES对称密钥加密技术保证信息传输过程的保密性。与传统的密钥协商协议相比，能够在更小的密钥量下提供更大的安全性，并减少了对节点计算量和存储量的需求。该协议在ID-BJM安全模型下证明了其安全性。分析结果表明，该协议满足前后向安全性和PKG前向安全性。

关键词: 无线传感器网络, ID-BJM, ECDH, 密钥协商, 安全性