DocumentCode
105150
Title
CPAL: A Conditional Privacy-Preserving Authentication With Access Linkability for Roaming Service
Author
Chengzhe Lai ; Hui Li ; Xiaohui Liang ; Rongxing Lu ; Kuan Zhang ; Xuemin Shen
Author_Institution
State Key Lab. of Integrated Services Networks, Xidian Univ., Xi´an, China
Volume
1
Issue
1
fYear
2014
fDate
Feb. 2014
Firstpage
46
Lastpage
57
Abstract
The roaming service enables mobile subscribers to access the internet service anytime and anywhere, which can fulfill the requirement of ubiquitous access for the emerging paradigm of networking, e.g., the Internet of Things (IoT). In this paper, we propose a conditional privacy-preserving authentication with access linkability (CPAL) for roaming service, to provide universal secure roaming service and multilevel privacy preservation. CPAL provides an anonymous user linking function by utilizing a novel group signature technique, which can not only efficiently hide users´ identities but also enables the authorized entities to link all the access information of the same user without knowing the user´s real identity. Specifically, by using the master linking key possessed by the trust linking server, the authorized foreign network operators or service providers can link the access information from the user to improve its service, while preserving user anonymity, e.g., using individual access information to analyze user preferences without revealing user´s identity. Furthermore, the subscribers can also use this functionality to anonymously query their usage of service. In addition, CPAL has an efficient revocation function, which revokes a group of users at the same time. Through extensive analysis, we demonstrate that CPAL resists various security threats and provides more flexible privacy preservation compared to the existing schemes. Meanwhile, performance evaluations demonstrate its efficiency in terms of communication and computation overhead.
Keywords
Internet; data privacy; network servers; telecommunication security; telecommunication services; CPAL; Internet of Things; Internet service; IoT; authorized foreign network operator; communication overhead; computation overhead; conditional privacy-preserving authentication; individual access information; linkability function; mobile subscriber; multilevel privacy preservation; performance evaluation; revocation function; service provider; trust linking server; ubiquitous access requirement; universal secure roaming service; user anonymity preservation; Authentication; Internet of Things; Privacy; Protocols; Roaming; Servers; Anonymous user linkability; Internet of Things (IoT); authentication; privacy preservation; roaming; security;
fLanguage
English
Journal_Title
Internet of Things Journal, IEEE
Publisher
ieee
ISSN
2327-4662
Type
jour
DOI
10.1109/JIOT.2014.2306673
Filename
6742585
Link To Document