In view of problems about security access risks and efficiency of mobile terminals in wireless Wi-Fi network of railway stations and yards, a security access authentication scheme for mobile terminals in railway stations and yards was proposed. Firstly, based on the existing security access architecture of mobile terminals in railway stations and yards, the secure access authentication of mobile terminals on the access controller could be realized by trusted authorization to reduce the dependence on Wi-Fi security gateway. Secondly, considering the characteristic of constrained resources of mobile terminals in the railway stations and yards, hash and dot multiplication operations were used to reduce the computational overhead of mobile terminals in stations and yards. Finally, the security proof of the scheme was given. The results showed that the scheme satisfied the features such as unforgeability, controllability of access right, traceability of abnormal access, and anti-man-in-the-middle attacks, possessing relatively high security. Compared with the other related schemes, the proposed one had less computation and communication overhead, was more suitable for mobile terminals with limited energy, and met the security and efficiency requirements for wireless mobile terminals access authentication in stations and yards.
LUGongyuan, PENGHui, HEBisheng, et al. Time Conflict Degree and Approximate Calculation Method of Routes in Railway Stations and Yards [J]. China Railway Science, 2021, 42 (6): 181-193. in Chinese
China State Railway Group Co., Ltd. Q/CR 859—2024 The Technical Specification for Railway Station (Yard) LAN Security Access Platform for Smart Mobile Terminal [S]. Beijing: China Railway Publishing House, 2024. in Chinese )
China Railway Corporation. Q/CR 544—2016 The Technical Conditions of the Railway Passenger Station WiFi Wireless Access System [S]. [S. l. ]: [s. n. ], 2016. in Chinese )
LIXinghua, MAJianfeng. On the Security of the Key-Agreement Protocol of Chinese WLAN Standard Implementation Plan [J]. Chinese Journal of Computers, 2006, 29 (4): 576-580. in Chinese
[11]
PARKK Y, KIMY S, KIMJ. Security Enhanced IEEE 802.1x Authentication Method for WLAN Mobile Router [C]// 2012 14th International Conference on Advanced Communication Technology (ICACT). New York: IEEE Press, 2012: 549-553.
[12]
YEX. An Improved OTP Authentication System and Its Application in Mobile Commerce [C]// Intelligence Computation and Evolutionary Computation. Berlin, Heidelberg: Springer, 2013: 615-624.
XIAOYuelei, WANGYumin. WLAN Access Authentication Schemes in Trusted Environment [J]. Journal of Lanzhou University (Natural Sciences), 2013, 49 (4): 547-553. in Chinese
CHENMing. Strongly Secure and Anonymous Two-Party Authenticated Key Agreement for Mobile Roaming Service [J]. Acta Electronica Sinica, 2019, 47 (1): 16-24. in Chinese
ZHAOGuofeng, ZHOUWentao, XUChuan, et al. A Secure Identity Authentication Scheme for Space-Ground Integrated Network Based on Bilinear Pairing [J]. Netinfo Security, 2020, 20 (12): 33-39. in Chinese
WANGYu, ZHANGWenfang, WANGXiaomin, et al. A Train-Ground Security Authentication Scheme Based on Anonymous Proxy Signature for LTE-R System [J]. Journal of the China Railway Society, 2020, 42 (3): 76-84. in Chinese
XUEJianbin, BAIZimei. Security and Efficient Authentication Scheme for Mobile Edge Computing [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44 (1): 110-116. in Chinese
YANGJinxiang, PENGYonggang, CAITiantian, et al. Power Terminal Lightweight Authentication Protocol for Edge Computing [J]. Electric Power, 2023, 56 (4): 88-94. in Chinese
HUANGRufen, HUANGZhenjie, CHENQunshan, et al. Short Proxy Signature Scheme with Provable Security [J]. Computer Engineering, 2017, 43 (12): 255-260, 266. in Chinese
ZUOLiming, CHENZuosong, XIAPingping, et al. Efficient and Provably Secure Short Proxy Signature Scheme [J]. Journal of Computer Applications, 2018, 38 (12): 3455-3461. in Chinese
[29]
FUJISAKIE. Improving Practical UC-Secure Commitments Based on the DDH Assumption [C]// Security and Cryptography for Networks. Cham: Springer International Publishing, 2016: 257-272.
[30]
XUEK, MENGW, LIS, et al. A Secure and Efficient Access and Handover Authentication Protocol for Internet of Things in Space Information Networks [J]. IEEE Internet of Things Journal, 2019, 6 (3): 5485-5499.
CAOJin, BUQiuyu, YANGYuanyuan, et al. Enhanced Beidou User Equipment Access Authentication Protocol Based on Location Key [J]. Journal on Communications, 2022, 43 (11): 80-89. in Chinese
YAOHonglei, LIUGuoliang, XIEChenhui, et al. Risk Assessment Method of CTCS System Network Security Based on AHP [J]. China Railway Science, 2023, 44 (4): 241-250. in Chinese
LIQichang, BUBing, ZHAOJunyi, et al. Research on Information Security Situation Assessment of Urban Rail Train Control System Based on Artificial Immune System [J]. China Railway Science, 2024, 45 (3): 128-137. in Chinese