IoT authentication involves not only people, but also things, requiring a universal authentication method. The core authentication technology is the subject authenticity proof, but the traditional proof method based on model reasoning or based on third party trust transferring cannot solve. Therefore, a truth authentication logic based on evidence is created. The Truth Logic is realized by digital signature, and proves the entity authenticity by identifier authentication and ontology authentication, forming a new concept of identifier authentication and proves the event authenticity by acceptance authentication and adoption authentication, where the acceptance authentication is composed of subject and ontology authentication, and the adoption authentication is composed of object authentication, because the acceptance process is always carried out before the acceptance process, thus forming a new concept of “proof before event”. Both entity authentication and event authentication are based on identifier authentication, so the GAP universal authentication protocol can be constructed to authenticate all entities in the Internet of Things and all events in the Internet of Events by single-step. As an example, GAP protocol gives the application on the network, a verifiable virtual network can be constituted by identifier authentication, proving traceability, preventing illegal access and DOS attack.