DocumentCode :
105150
Title :
CPAL: A Conditional Privacy-Preserving Authentication With Access Linkability for Roaming Service
Author :
Chengzhe Lai ; Hui Li ; Xiaohui Liang ; Rongxing Lu ; Kuan Zhang ; Xuemin Shen
Author_Institution :
State Key Lab. of Integrated Services Networks, Xidian Univ., Xi´an, China
Volume :
1
Issue :
1
fYear :
2014
fDate :
Feb. 2014
Firstpage :
46
Lastpage :
57
Abstract :
The roaming service enables mobile subscribers to access the internet service anytime and anywhere, which can fulfill the requirement of ubiquitous access for the emerging paradigm of networking, e.g., the Internet of Things (IoT). In this paper, we propose a conditional privacy-preserving authentication with access linkability (CPAL) for roaming service, to provide universal secure roaming service and multilevel privacy preservation. CPAL provides an anonymous user linking function by utilizing a novel group signature technique, which can not only efficiently hide users´ identities but also enables the authorized entities to link all the access information of the same user without knowing the user´s real identity. Specifically, by using the master linking key possessed by the trust linking server, the authorized foreign network operators or service providers can link the access information from the user to improve its service, while preserving user anonymity, e.g., using individual access information to analyze user preferences without revealing user´s identity. Furthermore, the subscribers can also use this functionality to anonymously query their usage of service. In addition, CPAL has an efficient revocation function, which revokes a group of users at the same time. Through extensive analysis, we demonstrate that CPAL resists various security threats and provides more flexible privacy preservation compared to the existing schemes. Meanwhile, performance evaluations demonstrate its efficiency in terms of communication and computation overhead.
Keywords :
Internet; data privacy; network servers; telecommunication security; telecommunication services; CPAL; Internet of Things; Internet service; IoT; authorized foreign network operator; communication overhead; computation overhead; conditional privacy-preserving authentication; individual access information; linkability function; mobile subscriber; multilevel privacy preservation; performance evaluation; revocation function; service provider; trust linking server; ubiquitous access requirement; universal secure roaming service; user anonymity preservation; Authentication; Internet of Things; Privacy; Protocols; Roaming; Servers; Anonymous user linkability; Internet of Things (IoT); authentication; privacy preservation; roaming; security;
fLanguage :
English
Journal_Title :
Internet of Things Journal, IEEE
Publisher :
ieee
ISSN :
2327-4662
Type :
jour
DOI :
10.1109/JIOT.2014.2306673
Filename :
6742585
Link To Document :
بازگشت