Automatic Dependent Surveillance-Broadcast (ADS-B) technology is a new solution for communication among aircraft and ground controller stations. In this new surveillance technology, critical messages (e.g., location of aircraft) are achieved by navigation satellites, and then an on-board equipment multicasts the unencrypted messages twice per second to the others. The previous ADS-B protocols suffer from weak authentication protocols with a few security vulnerabilities and privacy issues including key-escrow problem, user profiling, time consuming verification processes, and difficulties with certificate management. In this paper, we propose a new hierarchical authentication protocol used Certificateless Public Key Cryptography (CL-PKC) techniques to avoid using Public Key Infrastructure (PKI) certificate management and solve the key-escrow concern in Identity-based Public Key Cryptography (ID-PKC). Further, unlike many of certificateless schemes, our proposed scheme is secure against malicious-but-passive Key Generation Center (KGC). We prove that our scheme preserves conditional privacy, which means that distinct identities map to varied pseudonyms. The security and privacy features of our scheme are provably modeled under the widely-accepted random oracle model by computational Diffie-Hellman (CDH) assumption against adaptive chosen-message attack. Finally we show that the time needed to aggregate verification of 50 messages reduced by 84% and 48% compared to those of Yang et al.’s and He et al.’s schemes respectively.

自动相关监视广播（ADS-B）技术是飞机和地面控制站之间通信的新解决方案。在这种新的监视技术中，关键消息（例如飞机的位置）由导航卫星实现，然后机载设备每秒将未加密的消息多播两次。先前的ADS-B协议受身份验证协议的影响，具有一些安全漏洞和隐私问题，其中包括密钥托管问题，用户配置文件，耗时的验证过程以及证书管理困难。在本文中，我们提出了一种新的分层身份验证协议，该协议使用无证书公钥密码术（CL-PKC）技术避免使用公钥基础结构（PKI）证书管理，并解决了基于身份的公钥密码术（ID-PKC）中的密钥托管问题。此外，与许多无证书方案不同，我们提出的方案可抵御恶意但被动的密钥生成中心（KGC）。我们证明了我们的方案保留了条件隐私，这意味着不同的身份映射到各种假名。通过针对自适应选择消息攻击的计算Diffie-Hellman（CDH）假设，在广泛接受的随机预言模型下可证明地模拟了我们方案的安全性和隐私性。