• DocumentCode
    105150
  • Title

    CPAL: A Conditional Privacy-Preserving Authentication With Access Linkability for Roaming Service

  • Author

    Chengzhe Lai ; Hui Li ; Xiaohui Liang ; Rongxing Lu ; Kuan Zhang ; Xuemin Shen

  • Author_Institution
    State Key Lab. of Integrated Services Networks, Xidian Univ., Xi´an, China
  • Volume
    1
  • Issue
    1
  • fYear
    2014
  • fDate
    Feb. 2014
  • Firstpage
    46
  • Lastpage
    57
  • Abstract
    The roaming service enables mobile subscribers to access the internet service anytime and anywhere, which can fulfill the requirement of ubiquitous access for the emerging paradigm of networking, e.g., the Internet of Things (IoT). In this paper, we propose a conditional privacy-preserving authentication with access linkability (CPAL) for roaming service, to provide universal secure roaming service and multilevel privacy preservation. CPAL provides an anonymous user linking function by utilizing a novel group signature technique, which can not only efficiently hide users´ identities but also enables the authorized entities to link all the access information of the same user without knowing the user´s real identity. Specifically, by using the master linking key possessed by the trust linking server, the authorized foreign network operators or service providers can link the access information from the user to improve its service, while preserving user anonymity, e.g., using individual access information to analyze user preferences without revealing user´s identity. Furthermore, the subscribers can also use this functionality to anonymously query their usage of service. In addition, CPAL has an efficient revocation function, which revokes a group of users at the same time. Through extensive analysis, we demonstrate that CPAL resists various security threats and provides more flexible privacy preservation compared to the existing schemes. Meanwhile, performance evaluations demonstrate its efficiency in terms of communication and computation overhead.
  • Keywords
    Internet; data privacy; network servers; telecommunication security; telecommunication services; CPAL; Internet of Things; Internet service; IoT; authorized foreign network operator; communication overhead; computation overhead; conditional privacy-preserving authentication; individual access information; linkability function; mobile subscriber; multilevel privacy preservation; performance evaluation; revocation function; service provider; trust linking server; ubiquitous access requirement; universal secure roaming service; user anonymity preservation; Authentication; Internet of Things; Privacy; Protocols; Roaming; Servers; Anonymous user linkability; Internet of Things (IoT); authentication; privacy preservation; roaming; security;
  • fLanguage
    English
  • Journal_Title
    Internet of Things Journal, IEEE
  • Publisher
    ieee
  • ISSN
    2327-4662
  • Type

    jour

  • DOI
    10.1109/JIOT.2014.2306673
  • Filename
    6742585