适合ad hoc网络无需安全信道的密钥管理方案  被引量:18

Key management scheme without secure channel for ad hoc networks

在线阅读下载全文

作  者:李慧贤[1] 庞辽军[2] 王育民[2] 

机构地区:[1]西北工业大学计算机学院,陕西西安710072 [2]西安电子科技大学计算机网络与信息安全教育部重点实验室,陕西西安710071

出  处:《通信学报》2010年第1期112-117,共6页Journal on Communications

基  金:国家自然科学基金资助项目(60803151);NSFC-广东联合基金重点资助项目(U0835004);高等学校博士学科点专项科研基金新教师基金资助项目(20096102120045);西北工业大学基础研究基金资助项目(NPU-FFR-JC200819);教育部计算机网络与信息安全重点实验室(西安电子科技大学)开放基金资助项目(2008CNIS-07)~~

摘  要:密钥管理问题是构建ad hoc安全网络系统首要解决的关键问题之一。针对ad hoc网络特点,提出了一个无需安全信道的门限密钥管理方案。该方案中,可信中心的功能由局部注册中心和分布式密钥生成中心共同实现,避免了单点失效问题;通过门限技术,网络内部成员相互协作分布式地生成系统密钥;利用基于双线性对的公钥体制实现了用户和分布式密钥生成中心的双向认证;通过对用户私钥信息进行盲签名防止攻击者获取私钥信息,从而可以在公开信道上安全传输。分析表明该方案达到了第III级信任,具有良好的容错性,并能抵御网络中的主动和被动攻击,在满足ad hoc网络安全需求的情况下,极大地降低了计算和存储开销。Key management is one of the important issues for the ad hoc networks security. According to the characteristics of ad hoe networks, a threshold key management scheme without secure channel was proposed. In the proposed scheme, the role of the traditional certification authority (CA) is completed by a local register center and n distributed key generation centers, which can avoid the single point of failure. By using threshold cryptography, the ad hoc interior members collaborate to conduct the distributed generation the system private key. The mutual authentication between the user and distributed key generation centers was provided through the public cryptosystem based on the bilinear pairings. The user's private key is signed blindly to ensure that the private keys can be delivered securely in the public channel and cannot be eavesdropped. The analysis results show that the proposed scheme achieves the trust level Ⅲ, has fault tolerance and is secure against the active and passive attacks. It is concluded that the proposed scheme satisfies the security requirements of ad hoc networks and reduces largely the cost of computation and storage.

关 键 词:ad HOC网络 密钥管理 双线性对 门限密码 

分 类 号:TP393[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象